The better question is why would any competent IT staff have any SMB services installed or allowed?

There are 5 cone receptor types, which is why we have the potential for tetrachromats, as there are only the possibility of 4 receptors.

This is incorrect, women have up to 4 as do some men. The X chromosome normally carries 2, and women have two. The Y chromosome, IIRC, generally carries 1. (yes, I'm aware that's wikipedia, but it had most of the details from numerous other links, so...) Color blindness occurs commonly in men if the Y chromosome carries a duplicate of the X chromosome's receptors (resulting in a 2 cone system). If all 4 are unique, you get a tetrachromat. But if you're going for sheer number, why not be like a mantis shrimp with 12-16?

Finding good labor anywhere is a major challenge, especially in IT. The good talent is rarely "available", because if they're "available", their friends and former colleagues know it and they will find a home rather quickly. Networking is important like never before especially as you age in this industry.

Their old people, if they're still looking for jobs, should offer to work for them again at a 50+% raise.

English will be replaced by ....
English (2020)
Most of what's spoken today will be halfway unintelligible garbage to someone 200 years ago, and the change is accelerating.

Certs are fine, it's the CA management piece that's lacking, and how browsers deal with it. While cert management sucks with the OS/dev env tools, across the board, you can create a pretty straight forward interface for this process that's a whole lot easier than the provided crap.

Precisely.

I installed Chrome specifically to deal with Google, and only Google. It's almost like a self-contained dedicated mail/calendaring program, although the interface sucks compared to my desired mail programs so I don't often use it. Seems to keep Google out of my real browser's history as a bonus.

it was the root cert for gmail, it's not a root cert for a CA.

I became the SOA for facebook.com, and a few others a long time ago. This is not a problem.

Considering I have implemented an entire CA chain, yes, I am aware of the massive pain in the ass it is. Also, the real answer here is you never issue a cert with a CA that exceeds the lifetime of the CA's cert. When you get to that point, you issue a new CA cert, and issue new certs based on that new CA cert, and that applies all the way up the chain. That way, you never have this problem. So there's multiple failures here, it's not as simple as it appears on the surface, and makes the failure all the more egregious on Google's part.

There's only 3 issues for me, as I don't run windows.

In actuality, it was supposed to be representative of everyone with skin in the game, so to speak. Yes, that would by definition be the wealthy. That's how our founders set up our government, a republic, not a democracy.