| ▲ | hyperman1 4 hours ago | |
This is not the correct model. For a typical user, they can bring the laptop to someone knowledgeable, who will pop out the drive for them. The main question is: What is the biggest risk: theft or data corruption. In my experience, corruption and ransomware is more common so FDE should be off for households desktops or laptops, as these rarely leave the house. A business tends to have managed devices and data loss is a legal nightmare, so FDE should be on. The main thing is: people should be able to choose. | ||
| ▲ | cogman10 2 hours ago | parent [-] | |
There is a happy medium. Encrypt the user directory/s and leave the rest of the disk unencrypted. There is still a risk that the user loses valuable data due to corruption, but there is much less of a risk of the entire system being unusable or unrecoverable because of corruption or ransomware. | ||