After everything that has happened with Raivo over the last few days it’s reminded me that I need to go through my accounts with 2FA enabled.
However, how do others keep things organised? My main 2FA app is Proton Pass but I’ll be adding Ente Auth as a backup alongside my Yubikey. In the past I saved a copy of the QR codes when setting up 2FA but I’d occasionally forget to save new ones.
Does anyone have a good system for saving either the QR code or setup code (not actually sure what it’s called) for future use?
EDIT: the code I’m referring to is the initial secret code used to setup the 2FA
Final Edit: I’ve settled on saving the QR codes into a folder that is setup as a git repo.
You must log in or # to comment.
I use aegis as my 2fa app. I backup the 2fa seeds in my keepass file.
Same, but my seeds are stored in a separate vault from my passwords. Seems like having MFA and passwords in the same place defeats the purpose. I used to let keepassxc auto fill MFA tokens, but finally changed to a separate app.
I have the backup codes for the accounts on paper. This is not the same as the initialization qr codes, but it should also work.
I use passwordstore.org/ as my password manager, including for my otp codes. It’s backed by a git repo. I get a backup of it on every device it is cloned to.
I like the idea of using git.
The 2FA codes are just images. You can save them where you like. No requirement to backup your 2FA “to the cloud”.
Just make sure that your storage is backed up.
I print recovery codes of all services and packed them into a bag.
Screenshot the QR codes & save offline to a USB disk. Alternatively some people do print them but that only works for people that have printers or access to one. Same with the 2FA backup codes.
Or less ideal you can save them somewhere secure on your desktop/laptop/whatever, just keep in mind if you get hacked or get malware/whatever then it’s game over.
