Almost reasonably Secure
One hypervisor which will do nothing but store VMs.
There'll be "major VMs" which will be for my daily driver, gaming, etc.
There's also "minor VMs" which will do only one thing or two (three max): Browsing, Password Manager, FAFO'ing, etc.
I don't use Qubes OS be cause I don't have the hardware needed for what I want to do yet.
Self-explanatory
"Major VMs" will be able to run "minor VMs"
Self-explanatory
Windows (10) VM for apps/games that doesn't run/work on Linux (even with compatibility layers such as wine).
Casual: Youtube, social media, Discord, Whatsapp. Stores information*.
Work: Work-related stuff. Will also have ONLY/Libre Office. Non work-related stuff are blocked and/or firewalled. Stores information*, deletes after it's closed.
Restrict: Hardened browser. For banking, working with sensitive data. Doesn't store information*.
Unsafe: Same as restrict but this VM will be deleted as soon as it's shut off. Doesn't store information*. For FAFO'ing
*: Cookies, cache, browser/download history, auto-fill forms, login credentials, sessions, etc
Always offline, not even NIC attached. Will reattach NIC on occasionally for updates and deattach after it's done.
Self explanatory