Seeking an advice here.
Let’s say I have several important files on my Linux PC, like SSH keys, 2FA keys, some encryption keys.
But let’s imagine I also have Google Chrome, Skype, Wine and some AUR packages (same as PPA, for those not familiar with AUR) - and I am paranoid about malware.
How would you protect those sensitive files? Right now I have them outside home folder, owned by root, with 700 / 600 file mode. Also they are all encrypted, either by me or by software that generated them. But I am sure there are better ways to store them.