[iKnowKungFoo]

2FA is fine.

Except for Steam AND Battle.net (Blizzard) which both have their own dedicated 2FA apps.

I use 1password to manage all of this and the only thing compliant is about some sites that seem to break a password manager's ability to auto-populate form fields.

[vollmond]

I find Steam to be the least-onerous (phone-based) 2FA tool I use - it pops up automatically when needed, and the codes are only 5 characters with a mix of letters and numbers, which I somehow find much easier to remember and type.

Granted, I don't know if those features involve security sacrifices, and I'm sure I'd get annoyed if I needed a separate app for every tool, but the user experience is more pleasant there for me.

[danpalmer]

Plus Twilio/Sendgrid who are still trying to make Authy the standard, despite it being closed source/closed spec. They do let you use SMS as an alternative, which I guess makes sense being Twilio, but SMS 2FA has proven to be significantly less secure.