Ask HN: How do you store 2FA one-time codes?

5 points by aloukissas ↗ HN
When you set up 2FA using an authenticator, you are given a list of one-time codes to use in the case when you lose your phone and don't have access to the authenticator app.

Where do you store those? I would imagine that at least: (a) these should be on "the cloud" and (b) encrypted.

What's your current process of doing this? Do you just store them in your password manager (e.g. in the "notes")?

5 comments

[ 4.2 ms ] story [ 13.6 ms ] thread
I literally print them, and store them in a safe place.

One of the few actual hard-copy things I have. Don't write down any other passwords. One of them is to my password manager, so storing it in the password manager doesn't really make sense.

In my password manager notes section
I'd like to point out that having 2FA backup codes in your password manager means that if it gets compromised your security level is zero. It's called second factor authentication (2FA) for a reason, it should not be kept with your other secrets (e.g. password).

I print them out and keep them in the safe. I have 2-3 codes for each of my most important accounts in my wallet, with unrevealing names (nothing that anyone but me would associate with a certain account).