"Then click Install Now, and follow the rest of the instructions until you get to the “Who are you?” page. Make sure to choose a strong password — if someone steals your laptop while it’s suspended, this password is all that comes between the attacker and your data. And make sure that “Require my password to log in” is checked, and that “Log in automatically” is not checked. There is no reason to check “Encrypt my home folder” here, because you’re already encrypting your entire disk."
Above quote is from the section titled 'How to encrypt your disk in Linux' on the page at
Above quote is from the section titled 'How to encrypt your disk in Linux' on the page at
https://theintercept.com/2015/04/27/encrypting-laptop-like-m...
I'm just a bit confused about how Windows can remove keys without messing up file handles &c when suspending to RAM.
The level of security I have now is adequate to my purpose but certainly something for others to take into consideration. Thanks for posting.