I do it all the time on my dev box; especially if I'm moving between nVidia's proprietary driver, CUDA, and nouveau.
In the rare cases where it breaks video (more often caused by a config change in the X-Server) the worst I'd have to do is Ctrl-Alt-Backspace, which hasn't caused me to lose active work or forced a new login yet.
About a 2 hour drive south of Atlanta, who's trying to make themselves into a combination Silycon Valley / Hollywood for the South East
This should have read: Macon-Bibb county is about a 2 hour drive south of Atlanta; Atlanta being the one who's trying to make themselves into a combination Sillycon[sic] Valley / Hollywood for the South East
Good thing this is Georgia and not Alabama. About a 2 hour drive south of Atlanta, who's trying to make themselves into a combination Silycon Valley / Hollywood for the South East. Atlanta has already started considering towns as far north as Ellijay and Blue Ridge to be "Suburbs" with a combined sustained population less than 50K over 825 square miles. Up in this region, most of the local EMCs have rolled out Fiber capable of 50Mbps symmetrical or better all over the rural mountains. These are towns about 100 miles north of Atlanta, and within 10 to 20 miles of the North Carolina Border. In 20 years time, I expect the state of Georgia above Houston County to the NC border to be known as Atlanta-Georgia; From Waycross south to become Savannah-Georgia; and everything inbetween to be Da-Sticks of Georgia.
Of course, I still have to agree with you on the ethical conduct part. Technical Competence, though? Metropolitan Georgia is in a lot better position with their Technology Infrastructure than anyone gives them credit for. Almost scarily so.
If I wanted an enterprise level overkill solution, I'd have grabbed a couple of Cisco 1800's for <$200 off eBay with the necessary modules and configured the proprietary VPN through IOS like I learned in college (this route is still not off the table either, just not preferred). Your SSG5's are going for about the same price on ebay and would require me to learn a system I'm not immediately familiar with, which wouldn't be a problem if I needed this to work in my own lab only. Just because I'm not current on consumer and open source options doesn't mean I don't know my shit on the enterprise level. I specifically asked this question because I'm trying to AVOID enterprise equipment in a home environment, retard (to show you the same courtesy as you have shown me)!
I want a solution that I can either use my equipment on hand, or be able to buy/build for less than $200 that my dad would be able to troubleshoot through a web interface and know WTF he's looking at in the event something goes south when I'm not immediately available. Any solution I go with I am going to have to take a vacation week to walk him through troubleshooting and he doesn't do well with command line.
Not quite so easy.
Modem with 4 connect points is outside the house next to the Power Meter which is double locked, one for the service key and a padlock for our access to the connect points which my dad has the key for. There's an ethernet line on one of the connect points that comes out of there and goes into the basement where it goes into a locked closet with a thick metal door and deadbolt. Inside this room the cable comes into a large locked metal breaker box flush mounted in the wall just for this purpose; again, only my dad and I have the keys to this box. Inside this box is where we set up the wireless router, with the antennae removed from the unit itself and connected outside the room using extension cables with BNC connectors. All the physical connections in the house have to come into this box.
Diverting the outside connection to a server locked in the room and another line going back into the box to the router would be trivial to set up. I also have a lockable metal box with powered ventilation that a desktop workstation could fit in nicely with plenty of room to breathe (acquired from the local RadioShack when they were selling off their fixtures after the bankruptcy). Though based on most of the responses here I'm probably going to find some cheap routers (sub $100) that can run DD-WRT and OpenVPN to replace the one there and keep it inside the locked box. As far as wireless, I'll likely set up an AP or 2 on the main floor instead of the current setup that's not working very well outside the basement (for obvious reasons). Now that it's my dime going into this, my dad is more willing to let me have reign on the network and how things are set up.
Be prepared for him to learn how to bypass things...that's what kids do ya know.
Fully prepared and expecting it. He likes to figure out how things work like I used to. If he takes interest in trying to bypass the security it'll escalate like a chess game. So far he's more interested in building and programming electronic projects than getting online much. It can often be a battle of wills to even get him to use the internet to find his own answers when he's stuck.
If he's going to be using my or my Parents' network resources and the government says I'm responsible for what he does until he's 18, you bet your ass I'm going to do checks to make sure he isn't doing anything that will warrant a visit from the Feds. Beyond that, he has a pretty good amount of freedom and leeway on the web.
That said, I'll have to look into CRD to see if it'll work given the apparent constraints that my Parents' ISP has placed on the connection. Windows Remote Assistance was working for a while and that is primarily what we used whenever they needed some quick work or a tutorial on something they wanted to do with the computer... Unfortunately it just stopped working all of a sudden. We figured out that their ISP had started blocking ports; upon contact the ISP made it clear they weren't going to be helpful in opening them up for us. This is the reason for the desire of a VPN where every machine on my Parents' network will look like they exist on my local NAT so I can easily just point the RDP Client or SSH session to a known IP address and have the full access I need. Using RDP would also eliminate the need for someone to actually have to be at a desktop while I did maintenance. To facilitate this more, I plan on setting my parents' computers to respond to WoL packets as well.
It's Cox. Top tier used to be soft-capped at 400 Gigs which my household alone was pegging every month until they decided to raise all their caps. Now it's a 2TB cap that we barely use a quarter of. Until this situation arose, I had been considering dropping service down a tier and saving about $50 a month. Unfortunately the only other option I have for broadband (besides satellite) is 6Mbps DSL hard-capped @ 200 Gigs... though they can't tell me if I'm close enough to the CO or not.
So how do you encrypt this UUID?
You don't need to. Paranoid about it? Wipe the UUID field from the database upon successful verification of the email so it can't be queried against in the future. However it would be better to just do a sanity check in the code that if there's a boolean 1 in the "emailConfirmed" field after querying for the UUID, just notify the user that the account has already been confirmed and doesn't need to be again.
And what do you send for a password reset?
An email to the address on file that has a link to the password reset possibly pre-filling the userID field, but I tend to make the user type that in themselves. If they don't remember the userID... then they'll need to know other pertinent information that the account was created with, otherwise new account time. After the password is reset, then send a confirmation that only states this fact and not giving any identifying information in it beyond that. The same thing you should be doing for any type of change made at the user's account level. If the user is changing their email address, send a confirmation to both the old and the new address that it has been changed, then also reset emailConfirmed to 0, regen the UUID, and force the user to verify the new address, following the same procedure as if it were the first time.
But it doesn't stop Jane from decking you if you scream "Jane, you ignorant slut!" at her. Nor does that stop you from suing her for the medical costs associated with the black eye resulting from you being decked. Nor does that stop her from counter-suing for the slanderous defamation of her character. It only stops the government from putting you in prison for the rest of your life simply because of your opinion on Jane's promiscuity.
How you test for a brute-force vector without conducting a full brute force attack:
Hey, United, I was able to try 10 user/PIN combinations within 30 seconds of each other and did not hit any timeout walls or seeming account blocks. I was also able to directly use my real account/PIN combination on the 11th attempt that I manually did 5 seconds later and was able to get full access to my account. You might want to take a look at this to make sure that on a proper brute-force scale you're not caught with your pants down.
An authority is a person who can tell you more about something than you really care to know.