I've created a persistent live system on a 128 GB USB Drive. This has all of my useful tools onboard, and I'm also logged into all my accounts in Chrome Browser, and have my Google Drive mounting through rclone.
Needless to say, there's a good bit of sensitive stuff on this drive. I would like to encrypt it, should I lose it.
I recognize that this part of the request might be controversial, but I've thought it through: I'm okay with very basic encryption. I'm not trying to hide from intelligence agencies of any kind. I'm just trying to prevent the guy that finds my lost drive from logging into all my stuff when he realizes this is a bootable drive. If a simple encryption method will work, I'm okay with that. I'm looking for the simplest possible solution.
I've tried putting a password on the account, but they don't seem to stick. I can log in without a password, just leaving the field blank and hitting enter. I've used the GUI password changer and passwd as well. No joy. This doesn't prevent anyone from finding my stored files though, if they browse through the drive itself.
All of the guides I'm finding online seem to be outdated or inapplicable. I wasn't able to "Just Select LUKS Encryption During The GUI Installation Process" because I'm running a live, persistent drive. (I'm also using a casper partition, rather than a casper file)
How can I add encryption, and keep this thing bootable and persistent? Trying various tutorials with cryptsetup has yielded an unbootable device.
Bookmarks