No need to try to save everything but if we know something is going to die off we should at least try to save it's DNA so we can clone it later if we need it for something or just want to study it.

It's my job to trace IPs back to customer's accounts.
Big ISPs have nice record keeping and database systems setup to make it easy, but even the little guys can track you down with very little trouble.

It's not hard to trace an IP address back to a customer's internet account and (in many cases) a physical address.

Sure you can't tell exactly who was at the keyboard, but as far your ISP is concerned, who you allow to access your account is your problem. The account holder is responsible for what takes place over the service they signed up for.

When it comes to major legal issues, we are able to give police a very firm places to start looking (a physical address, a hostname, access logs etc) and from there they can check your hard drives, network, home router config, and decide how likely a suspect you are from that.

I'm guessing this game will cost $40-$60. That's a lot of money to risk on a hand held game. Not all Mario games have been gems.

This is exactly what Mozilla needs to lean to start doing. I don't even care if they bury those options in about:config but major changes to basic things like address bars, title bars, status bars, tabs, etc should all be 100% optional not need yet another add-on. I prefer using add-ons to extend the browser, not restore functionality. Far too many of the add-ons I have already installed were only added to bring back some feature that was taken out of the browser or changed.

workstations should have a desktop firewall mostly to monitor outbound connections. (good for keeping apps from phoneing home etc).
most nasty inbound traffic should be blocked at the router but it's nice to be able to block an extra port or random IP when needed on a per machine level.

For servers where you are expecting random incoming traffic it's better to block all unwanted inbound traffic before it ever gets the sever (ACLs work fine here). You don't need to worry about outbound traffic as much, as long as you are doing reasonable things like blocking outbound port 25 for your web server, port 80 for your mail server etc.

While I'm sure some of the new functionality will be exploited, I expect most of the abuse will be from folks who want to push ads and track users.

Anytime someone registers something like www.paypal-loginweb.com it should be setting off red flags everywhere.
I'm not saying these domains should be shutdown automatically or anything, but they should be flagged for review every few weeks and it might not be a bad idea to ask a few questions either.

The fact is that many registrars have worked so hard to lower costs that they cut out the basic checks that would have caught these kinds of domains.

Sure it would never stop someone from setting up a phishing site with a domain like skljhf3lihgfsklh2jnf.com but that domain sure would make it easier for people to detect something wasn't quite right.

In many cases lazy irresponsible registrars are making things too easy for criminals.