Using sms text for 2fa to the phone works OK (there remains risk in using this method - see link below), until it does not work (see my other thread about it not working right now)
I suggest adding support for virtual device 2fa apps (google authenticator, authy, whatever. ....)
This will decouple the 2fa from a physical device (super lame solution)
The benefit is that I can now depend on my 2fa virtual device code for authentication, and now no longer have to worry about evernotes implementation of 2fa to send a text or call a phone to work or the loss of my physical device.
for reference, a cnn article calling out why sending a direct sms text is a poor choice for 2fa
https://www.cnet.com/news/privacy/do-you-use-sms-for-two-factor-authentication-heres-why-you-shouldnt/
