What happens if hackers destroy Bitwarden's site and backups and cause its client to delete your local synced copies? :P
> Should I store a USB key with my 2FA code strings from Aegis somewhere at my parents?
Using my parents as a sample, they have a fire-safe, and most of those work by keeping the temperature from getting too hot for paper to ignite, which is hotter than what will ruin a USB stick. (In fact, a melting/flaming USB stick inside might ruin all the papers near it too.)
So I'd consider printing it out on paper (large font, multiple times repeats?) and storing that paper instead. You could even lightly-encrypt it with some "I can decrypt this in a line of Python" method, if you're feeling extra-paranoid.
KeepassXC, which does not require 2FA. Where possible, SSH keys.
The fundamental problem is that the Internet is not a "high trust" society, so security is onerous. There is no great solution. Sadly, passkeys are not an improvement.
What happens if hackers destroy Bitwarden's site and backups and cause its client to delete your local synced copies? :P
> Should I store a USB key with my 2FA code strings from Aegis somewhere at my parents?
Using my parents as a sample, they have a fire-safe, and most of those work by keeping the temperature from getting too hot for paper to ignite, which is hotter than what will ruin a USB stick. (In fact, a melting/flaming USB stick inside might ruin all the papers near it too.)
So I'd consider printing it out on paper (large font, multiple times repeats?) and storing that paper instead. You could even lightly-encrypt it with some "I can decrypt this in a line of Python" method, if you're feeling extra-paranoid.