[mdaniel]

> since the e2ee does not depend on a user chosen master password.

What's the story with "my phone went in the lake" using that setup?

[isthisthingon99]

Since i use Google Authenticator for numerous services this is going to happen to me one day. So what I did was set it up on more than one phone.

[mdaniel]

I would legit pay money for Google to pull that piece of junk from the Play Store, because it's damn malpractice at this point, given there are so many other options that don't straight-up swallow the TOTP keys

[isthisthingon99]

Sorry what

[FreakLegion]

You can back the secrets up to a text file, print them out, etc. too. They're short Base32 strings and TOTP is a standardized protocol with an RFC (6238) and everything.

[jve]

Except it is cumbersome to doo on Google Authenticator. You must press export to get shown a giant QR code. You can't screenshot it. Must photo with different phone and print on a piece of paper for offline storage.

[isthisthingon99]

Yes i did this too

[ThrowawayTestr]

I also have two phones with Google Authenticator. Is that a bad idea?

[sufficient]

Just wrote a longer answer to the question below, hope that covers your question as well.

[8n4vidtmkvmk]

fish it out of the lake and pay someone $1000 to extract the tpm and restore it for you