Having nothing running by default is just basic, if you want to open a service to the world then you should have to explicitly turn it on.

Still running default services and just hiding them behind a firewall is a stupid, not having them running at all is far more sensible.

I was hoping that if I ever expatriate, France would have been a good choice.

Supercomputers are generally built of a large number of general purpose CPUs, which aren't all that good at bitcoin mining compared to dedicated ASICs... Even with hundreds or thousands of CPUs, you will consume more in power than you ever make in bitcoin.

Which means you need to enter your key every time you start the browser...
If the browser has a way of automatically knowing the decryption key, then so does a hacker.

Also, previous session data should be useless - the sessions should have expired, or been closed when you logged out. Most sites that offer the option to stay logged in warn you against doing so on a system you don't trust.

And i'm pretty sure other browsers don't store persistent cookies very securely either, they used to be in a plain text file and they can certainly be viewed/user from within most browsers without having to ever supply a decryption key.

http://www.adviceguide.org.uk/england/consumer_e/consumer_common_problems_with_products_e/consumer_problems_with_delivery_e/consumer_unsolicited_goods_e/youve_received_goods_or_services_you_didnt_ask_for_distance_sales.htm

A reply paid envelope is not enough under UK law, as that unnecessarily inconveniences the recipient if they have to take the item to a post office.
The company should be offering to collect the goods from the same location to which they were originally shipped (most couriers will do this), and should also be compensating the recipient for the fact they haven't received the goods they actually ordered and had to deal with the inconvenience of receiving something else instead.

Under UK law you must inform the sender that you received an unsolicited item from them, and you must make it available for collection... You certainly never have to pay for the shipping yourself or suffer the inconvenience of having to take the package somewhere. You simply make it available to be collected from the same location it was shipped to, at a time which is convenient to you and everything else is down to the original sender.

Under UK law if you receive something unexpected you are obligated to inform the sender, and then make the items available for collection if they want them back. Having done this, if they fail or refuse to collect the goods you are free to keep them.

In this case however the delivery was not unexpected, these users were expecting a delivery from zavvi and didn't receive what they ordered... Normally when this happens (ie every time it's happened to me) you get something massively inferior to what you ordered so you'd have no reason to keep it.
The seller is in breach of their contract by sending you something different to what you ordered, and should at the very least be compensating you for messing up your order.

Having the OS is no longer profitable, MS are already considering giving windows phone away.
The profit is to be made in selling services, and a phone running android but which defaults to their services is likely to be a lot more profitable than one running a niche platform with a tainted branding.

It's not just tablets, organisations everywhere have for years been deploying new technology that brings with it the promise of improved productivity. In reality it often does not... You take old hardware and old software that works just fine, and spend a fortune replacing it with new faster hardware running new slower software. The end result often isn't any faster, and users have to take time getting used to it while not using any of the new features. Often the new version is much worse than what it replaced, and instead of the software supporting the business, the business has to adapt to the way the software works.

Not at every entry point, security should be a serious consideration on every device. Work on the assumption that everything is directly exposed to the internet and start from there.
Trying to only monitor the entry points is the problem, if anything makes it past your entry points then it could have free reign over everything inside.

Then work in the office...
Google's plan is to do away with a local corporate network, so that the network available in the office is just an internet connection and you connect over the internet to whatever services you require. If you are in the office then your connection will be just as fast since the services you generally access are just as likely to be local as they were before. It's just that now instead of being on a flat network with insecurely configured devices, you will connect to those devices over a public network and they will be hardened just as you'd expect servers connected to the public internet would be, instead of assuming that only trusted employees can get to the servers and slacking off on server hardening.

Endpoint assessment is a stupid idea, a malicious (i.e. owned) client can easily lie to the server while a legitimate user wanting to use a configuration not thought of by the sysadmin gets screwed.
Also having to use a proprietary client is terrible, you end up being unable to update your OS because doing so can break the third party vpn client, or finding yourself with extremely restricted choices as to what os you can use.

Most corporate users, and home users for that matter have no idea how to repair computers. They will simply send it back to the manufacturer to be replaced.