Metro apps need to come from a store. Desktop apps do not. Win 8 on x86 has a desktop anyone can use. WinRT does not (it has a desktop, but it's only available to Office). So WinRT is restricted to store delivered applications.

A bunch of hardware (think Cisco routers, load balancers, etc.) only generate CSRs with 1024bit keys.

It's not censored in the pictures of the slogan that neowin has or SCM Magazine.

It wasn't that hard to search for either. However it was probably harder than the knee jerk reaction shown above.

Of course Apple and Google do the same things for their phone OSes. And then there's those god damn open source commies who want an authoritarian government - they must do, there are rather a lot of Linux based forensics tools. Microsoft is giving away technology at no cost to help law enforcement gather data from computers? So is open source. Get over your bad self.

Other OSs achieve better security by DESIGN

Then perhaps you ought to look at the Windows Phone design. Aside from the limited ability to do stuff that each app is constrained by (and the checking of those permissions by the marketplace publishing process) applications are isolated from each other, both in terms of memory access and file system access. What it does lack is full device encryption.

MS Whitepaper on Phone Security

We can expect to see the same news story every day for three days? (Then a correction entitled Dupe?)

For setting it's run time parameters. I have a friend with a brain implant (from the same company). It sits on a nerve bundle and shocks it in order to stop cluster headaches. However it needs adjusting, both under his control and then it also needs proper recalibration every couple of years. He has a remote control, and the doctors can recalibrate without having to open up the back of his skull again.

However it's not wifi (and I'd be surprised if the pacemakers were either), but it does have remote connections with, ummm, yea, seemingly no authentication whatsoever,

Client side authentication? Funny, there already was a standard for that with SAML, Microsoft's CardSpace. Now Mozilla are trying to force their own tech down? At least MS, at the time, opened CardSpace (and SAML) to a full blown standardisation process, and it was usable (with a plug-in) in both IE and Firefox.

Or you use remote administration tools. This isn't exactly new anyway, Windows 2008 has had "Server Core" installations which haven't installed a UI layer at all. Those tend to be used for AD boxes, or Hyper-V hosts or IIS servers.

Reason? Caved into public humiliation more like. Reason had nothing to do with it, bad publicity, losing customers and losing money was what caused it - and remember GoDaddy had a clause where SOPA wouldn't apply to them anyway.

Serious question - if you clone pig meat, without the animal ever being grown, it won't have hooves - so is it kosher? What if you clone human meat from a volunteer? Is that cannibalism?

Actually, being a brit in the US I can answer this. English cucumbers are different, it's down to variety. The US cucumbers tend to be more knobbly and thicker skinned, and need peeling. The English cucumbers are what we'd get in the UK, sold sealed in plastic, thin skinned and go in my gin and tonics.

Don't get me started on bacon.

Add to that it's doubtful you'd want to protect a server like this. Lets take bitlocker as an example, as that's an existing Microsoft security technology. It requires a TPM chip, and those aren't common on server boards. Plus, if you reconfigure and reboot you get a BIOS prompt, and you can't easily deal with those remotely. I really doubt this would be rolled out in data centers.

And the pattern for the parrot must be open and free so others can compile their own parrots from scraps of material and discarded belly button lint.

And that's meaningless. When you submit a certificate signing request to a CA you are sending the public key of the certificate you want validated. The CA performs their checks, then signs that public key and sends it back to you, where you pair it with your private key that has never left your possession and you have a full certificate.

So copying the certificates wouldn't be a problem, heck that part of the certificate is viewable to any browser.