www.nearlyfreespeech.net (mainly a host but you can register domains with them) offers Google Authenticator 2fa and control over what recovery options are allowed, including none, which is something I wish anyone that supports 2fa would offer.
https://www.dynadot.com offers both Google 2fA and SMS, with a big push toward the Google solution. Dynadot has been a great all-around solution in my experience. Gandi is also excellent.
Yeah, that's the point. Everyone tries to re-invent 2FA or use SMS, both of which are bad for the end user. Even 2FA companies like Duo use some non-standard protocol which only their client can implement.
SMS is far better than nothing. Your average script kiddie is not going to be able to intercept your SMS messages. If you are specifically targeted by sophisticated attackers, maybe.
My biggest gripe with SMS 2FA is that it is prone to locking me out of my accounts on travel, if I suddenly need to log in to something and my phone number isn't the same abroad.
is it such a pain taking a small burner phone? Alternately, you can install 2FA app in your smartphone. And if you traven that frequently you need to revisit your security choices. There is no security without any efforts from _you_. Google/MS/Apple can only do so much.
Is it only me who is surprised that in the US no one has the notion of buying pre-paid SIM cards - which are unconnected to your SSN or credit card or bank account?