I have such anxiety when it comes to 2FA backups. Most websites recommends Google Authenticator, but you can’t export the 2FA secrets out of the app. Google recently made it possible to transfer it to a new phone; assuming you haven’t lost, sold, or broken the old phone. Where would you even store the 2FA secrets if you were able to export them out of your 2FA app? You can’t just save it to a cloud drive. Putting it in your password manager kind of defeats the purpose of having two factors as you’ve put all your secret eggs in one basket. Then the are the damned websites that only support adding one 2FA token. You need at least two, right? One primary YubiKey or OTP token, and a backup in case misplace or break the primary one. I regret it almost every time I’ve added a 2FA to a website. They often don’t let you remove or replace it, even if you still have the 2FA token! You’re locked into securely maintaining a single secret forever. A secret that, for most people, will be stored in an app that they can’t even backup the data from! This is all so frustrating.