I have a new machine, 8 GB RAM, 512 GB SSD + 1 TB HD. I want to boot dual with Windows 10, spend most of my time in Ubuntu with software development and personal use, and use Windows only for games or Mathematica. I also want to encrypt the drives according to this guide. However, I understand that Windows 10 uses Bitlocker encryption, while Ubuntu would use the LUKS + LVM type, so I would be unable to access Windows files from Ubuntu, or vice versa. Therefore, I will not encrypt Windows drives (because I do not store sensitive data there) and think of the following scheme:
EFI system partition (under Windows), regardless of the size of the SSD
Windows 10 system 250 GB
/ boot 500 MB (required for encryption)
/ 150GB (* encrypted)
/ home 100 GB (* encrypted)
/ Swap 4 GB (* encrypted)
sdb1 NTFS shrinks the Windows data partition
sdb2 NTFS partition for shared data
sdb3 (* encrypted) private data partition
Now I have the following questions:
1) I am not sure if I need a separate / home partition. I do not use other distributions, and I usually stick to the end of support for an Ubuntu (LTS) version (stability is an important feature for me). On the other hand, the encrypted partitions / and / home may be more reliable than separate partitions, so the other partitions will be fine if a partition is corrupted. What do you advise? Also note that my / is much larger than / home because most of the files are on the shared hard drive partition and I associate with ~ / Downloads and other folders. After installing many packages on my previous computer (the Python ecosystem is huge), I found that / is pretty fast. Does this make sense?
2) Should I get rid of the shared data partition and mount only the Windows drives? On my previous computer, I simply mounted the Windows drives in Ubuntu and copied files from / to there. But sometimes it could not be activated because Windows was shut down.
3) The reason for having a separate encrypted private data partition is that I want to access files from Windows, and I do not really care about encrypting movies or music files, just important things like tax documents or private data. I'm also not sure if encrypting movies will affect performance. If I have a 10K 4K movie that does not fit in memory, does it jerk when the CPU needs to decrypt it during operation?