This is a bit of an open discussion where I welcome options and comments from anyone and everyone!
I have a nagging concern that I will get caught out by a catch 22 situation. As unlikely as it is, it's still a possibility, but I'm worried that my iPhone, iPad and Mac could all get stolen, at which point I'm totally locked out of my online life, for good.
I have two factor authentication (2FA) enabled for Dropbox where my 1Password data is stored, and herein lies the issue. I WANT to have 2FA enabled wherever possible, but having it enabled on Dropbox (or iCloud if that's your bag - I have the non-App Store version of the Mac app so this is no longer an option for me) causes me this issue.
Essentially Dropbox is my "weak point" by virtue of my enabling top level security for it. I could turn off 2FA and try to keep a password for it that I remember and then commit to regularly changing it, but I'd rather not - I like having my 50 character nonsense passwords created by 1P.
What's the solution? I know all the 2FA services give you emergency backdoor codes to get into your account should you need them, but don't they also rely on you knowing the account password too? I don't know my Dropbox password, and don't want to. Even if they don't I don't really want to be having to find a safe place for scraps of paper for emergency one time passwords (OTPs).
To prove this to myself I just went through the process of assuming no access and failed at the first hurdle. Dropbox's password reset tool sends and email. I would never have access to my email!
Help! I'm panicking!! ;-)