Whonix user isolation (user-sysmaint-split) breaks VeraCrypt workflow

Hi,

I’ve been using VeraCrypt for a while on a Whonix app qube.
With the latest template version (Q4.2), I haven’t been able to open my encrypted drive because it asks for admin rights, which were removed. How can I make it work with the newly implemented isolation without either removing it or giving the user full sudo rights as was done before?

Permission denied:
/usr/bin/sudo

VeraCrypt::CoreService::StartElevated:435

Thank you

2 Likes

See: Applications requiring Administrative Rights during User Session


(Whonix is based on Kicksecure)

1 Like

As I understand it, I either need to run the full program as root or enable sudo privileges for the user. Using privleap doesn’t seem doable here, unless I’m mistaken.
I will clone the template and revert to the previous sudo behavior. That seems to be the best option in my case. Thank you

1 Like

VeraCrypt does not work with privleap. Many of us need VeraCrypt, thus we can not use the new isolation mode.

Why is VeraCrypt not included on the apps already installed?

Thank you Patrick.

1 Like

Because there’s cryptsetup / LUKS installed by default. See also:

Also due to:

1 Like