Let us see - an evil maid would have all 4 things together to steal my money
- Have my usb drive (easy)
- Fake my fingerprint to unlock USB (doable with strong will)
- Know the password of cryptomount partition (hmm, probably get me drunk?)
- Know the password to my wallets (same as above)
Not sure how hardware wallet would fair better here?
The thing is, an evil maid wouldn't even need these things to compromise your wallet setup.
It would be enough to have hardware access to your computer used. That's more than enough to compromise your wallet and to exfiltrate the secret data even without network access.
While a hardware wallet also doesn't provide perfect security against evil maid scenarios (at least one concrete scenario to steal the coins is possible with hardware access to the hardware wallet and the computer), it provides
more security.
BTW, what is the typo in my README? Would really appreciate your pointing it out.
Here:
Networking modes:
EROAS supports 4 networking modes:
Connect to Electrum open network directly (default)
Use Tor to connect to Electrum open netowrk for privacy
And further, i wouldn't call it "warm wallet". The term you are looking for is
hot wallet:
EROAS stands for "Electrum Running On A Stick". It runs Electrum wallet, the best open source bitcoin wallet, on cheap USB drives, with cold-wallet level security and warm-wallet like convenience.