I decided I’d dump VirtualBox-Whonix for KVM-Whonix, so I was following the tutorial to perform a clean install when I saw it is highly recommended for the Whonix disks to reside in /var/lib/libvirt/images. That’s a problem for me because I want the disks to be on a Veracrypt-encrypted partition on my HDD, dedicated to Whonix, so that the VMs are visible and accessible only when the partition is mounted /decrypted.
Is creating a symlink, a mountpoint in ~/libvirt pointing to my encrypted partition a good idea? (I’m not even knowing what I’m talking about, here) Could then Whonix be run and in a safe way?
XML files, AppArmor and SELinux would be okay with that?
There’s that thread, but it confuses me about the thing being feasible and secure or not: “Cannot access storage file” using Veracrypt?
I’m on Ubuntu MATE if that matters.