So I’ll be traveling in such a way that I’ll be crossing the US border. I want to take a burner phone so I can wipe it, or have innocuous enough data. The problem: all my passwords are stored in a password manager that uses 2FA tied to my primary phone which will be sitting at home (along with other sites that use 2FA tied to authenticators on my phone).

So remembering passwords is out. And not having access to 2FA presents a catch-22. So what’s the best way to approach that?

  • @[email protected]OP
    137 days ago

    Thanks for the suggestions. Here is what I’m probably gonna do:

    • Upgrade BitWarden to premium
    • move my TOTP codes into there
    • Get a Yubikey for 2FA for it
    • Keep a second 2FA TOTP option available in case I lose the key

    Then all I’ll need to do is reinstall it, and log in with the master password and key and be good for any of my sites.

    • Sam A.
      26 days ago

      Perhaps you could also print an encrypted version of your Bitwarden TOTP secret on a QR code and bring it with you in your luggage?

      So, encrypt the secret with a passphrase you can remember, encode the entire thing in a QR code and print it on a piece of paper. Easy.

    • irotsoma
      27 days ago

      I do this as much as possible, though I have a self hosted VaultWarden instance. I really wish more stuff supported TOTP or Yubikey. There’s still a ton that only support text or email which just puts a big old hole in the security, IMHO.