That is one of the way to secure our accounts. Just installing Alby and seamlessly switching b/w apps is great but only until it's not breached and used for low risk application like SN. Once, nostr reaches to a point like emails (used to verify your identity), I feel still keeping separate passwords is the way to go. 2FA TOTP is an interesting option as a secondary layer too. I might be totally wrong.

I would totally want 2FA if I had stacked sats like k00b or DarthCoin or yourself :P