Exchange has evolved a lot. Take Exchange 2007 for example. On an internet-facing server, it is quite easy to enable anti-spam rules. Even better, they get updated weekly directly from MS. You can also add your favorite antivirus utility (you will end up paying "enterprise prices for it) to scan incoming and outgoing mail for CYA reasons. You also can add server to server connectors between companies so E-mail between your company and a customer never touches the Internet in the clear.
There is one thing I do wish Exchange 2007 had built in, and that would be some sort of application level backup mechanism for mailboxes. As of now, if you want to back up users, you will need to spring for a third party utility such as Backup Exec, Retrospect, or Microsoft's own Data Protection Manager.
Maybe the suggestion of making the backend of Exchange a SQL Server database is a good one. This way, mailboxes can be handled with the ton of DB tools available.
SOE has tried this on some servers with their Station Exchange concept. It has gone over for the most part like a lead balloon.
Most gamers don't want to be earning their stuff, only to find they are outclassed by someone who dropped a couple C-notes for the same gear and who doesn't know the class basics in a group.
The true test of a Naxx run is Thaddius, perhaps Heigan. The guys who are dead on the floor are the ones who didn't follow instructions. Heigan, people can drop because of lag so it isn't as good.
Kel is also good, but if you got to Kel, you can probably knock him off, unless you have a Naxx raid of 7 healers and 18 death knights (which I've seen happen) and can't melee him down due to his chaining AoEs off the melee.
Everquest 2 does exactly this. You can get to level 80 in a tradeskill and still have the adventuring level be level 1 (although you will end up level 2-3 just due to discovery experience.) EQ2 also even has tradeskill instances where you or a group can work on making stuff for some NPCs to get loot drops, as well as exp.
Depends on the country you live in. Here in the US, criminal trespass is a crime, and can result in 6 months to a year in jail. Repeated offenses, or trespass with a weapon doubles that.
If people want an ultralight laptop, like people pointed out, they can grab a Macbook Air. IIRC, you can just zero out the Air's disk and install Vista without needing Boot Camp if one felt like it. Or, one can keep OS X and use Boot Camp to make Windows XP work (which would be lighter on system resources).
If people wanted a Windows machine (where it is expressly noted that the machine is not a Mac) for professional use, Thinkpads are the black limousine of the laptop world. People can purchase a Thinkpad X Series.
This is nothing against Dell. Dell's competition just has better offerings than what it has in this market segment. If I were buying business desktop PCs, regular laptops, or servers, I'd strongly consider Dell. However, for a premium ultralight, the competition is ahead here.
This is what all OS makers bang into. The http://www.codinghorror.com/blog/archives/000347.html "dancing bunny" security hole. They can do their best, but if a user is determined to make a process run as root, they will, barring a "trusted" environment where even root/administrator doesn't completely control the system.
There are two programs included with Windows versions (XP and newer) that do pretty much this. sigverif.exe which verifies every file's signature, and sfc.exe which will compare installed Windows files against service pack files and will copy from OS media any files that have been changed or are missing.
A friend of mine did similar. His vehicle has two 25 gallon gas tanks. So, he routed one so it filled up from a non-obvious location and the second tank he filled up with water and used a non locking gas cap. It was not uncommon to see more than the usual amount of dead cars in parking lots, especially during last year when the price of gas spiked.
This is another advantage of tapes. Tapes are meant to be written to, put in their cases, and dropped into an offsire storage service's bin where once sealed, its out of your hands. Because tapes have relatively few moving parts similar to a hard disk, they can take the handling of a third party without issue, while hard disks usually need heavy padding.
For backups the ideal is a D2D2T setup because it allows for smaller backup windows, and if a client needs restore, it will have less effect on backups in progress than having the backups go directly to an autochanger.
Best of all worlds would be SSD becoming inexpensive enough so the cartridges that replace tapes in an autochanger. No moving parts means that they can take more rough handling, and with the SSD form factor, cartridges and libraries can be redesigned from the ground up for optimal performance.
There is another fact too. Tape can take more abuse than HDDs. If I drop a tape, I check to see if the spindle is still aligned, pop it back into place if it is not, and I will be almost certain that I will be able to retrieve any and all data contained on it. If I drop a hard disk onto the floor (especially a 3.5"), there is a chance that nothing on the drive will be able to be retrieved.
I still wonder about SSD lifetimes. Tape isn't perfect, but I can still access DLT IV tapes I put data on a decade ago. Hard disks, its somewhat random that a drive stored for many years will power on, overcome stiction, and be coaxed into retrieving its data. SSD, I have not seen much about how it can hold data for long term (over 7 years into decades) archiving.
One place I worked at did something slightly fancier a couple years ago before RAID 6 went into common use:
They had three hardware RAID enclosures which did the RAID calculations on the enclosure and appeared to the host as a single hard disk volume (each had a number of drives including one as a hot spare) plugged into a midrange UNIX server via fiber channel. Then the three volumes from the enclosures were configured as a RAID volume in software using Symantec's volume manager (formerly Veritas). This way if a drive fails while one enclosure is in degraded mode, the data is still accessible. It would take multiple controller failures, multiple drive failures in different enclosures, a combination of the above, or a sitewide disaster to lose the data contained.
With RAID 6, this is less of an issue because it would take three drive failures in the time it takes for one drive to rebuild to kill the stored data, but at the time RAID-ing the RAID arrays seemed to provide some decent redundancy.
As others have stated, running a VM is a wise choice as well as buying server grade components for maximum life.
I would add one addition though: Make sure to factor in backups as part of the system. The software that the original poster is using probably precludes backup software inside the VM, so one will need to backup the VM image files. I know VMWare can separate the files into 2 gigabyte chunks that can then be backed up to a volume using Backup Exec or Retrospect. This way, backups can be taken of the VM every night, and a restore is as simple as dumping the VM disk files back into the original directory.
I would recommend the backup volume be either an internal array doing RAID 1 or RAID 5/6, or an external RAID device such as a MyBook Mirror Edition or a Drobo that handles the "heavy lifting" of the RAID management for the computer and appearing as a single drive. This way, the backup data is protected from a single drive failure.
Finally, I'd also recommend periodically attaching an external hard disk, copying the backup data from the RAID volume, then unplugging the external hard disk and storing it offsite (perhaps an Iron Mountain tub.) Multiple ones would be best so you can do a grandfather-father-son rotation. Of course, don't forget to back up the backup software and its license keys (usually tossing it on a couple USB flash drives will do the trick.) If the VM image is small enough, you might be able to back it up to a USB flash drive, although I highly recommend backing the whole machine up, OS, applications, and the virtual machine.
Even though some hardware can last 15 years, I would not bet your data (and your business) on it, and highly recommend a two-tier backup solution so you can get back up and running if something does happen. Even the best servers will fail, which is why businesses that need 99.999% uptime go with clustering, high availibility, and multiple sites.
North Korea doesn't even need nukes to cause major economic damage to the West. All it has to do is start shelling Seoul and that would cause immense economic chaos in hours as the manufacturing supply chain for a lot of goods worldwide is cut.
Also, DPRK doesn't have to have a high tech delivery system to do damage with a nuclear vice. There are a lot of terrorist groups who would pay high dollars for a fully functioning bomb, and they would do the rest of the work.
This makes for an interesting business opportunity. A service similar to Mozy Pro except with better provisions for encrypting data [1] before it gets sent to the cloud. Then, should a business lose its colocated servers, they can be rebuilt from another location.
[1]: Data encryption is solid, but what is needed is a good enterprise-level key management system so if one employee leaves or goes rogue, the data can still be recovered with another key, and the rogue key removed
You could put a hypervisor on a lower level for this functionality, but that brings its own can of worms, including figuring out how to pass communication from hardware devices to the operating systems. For example, which OS should set the proper settings on a USB toaster?
Bitlocker does exactly this, assuming the laptop has a TPM chip. Once enabled and the recovery key saved somewhere secure, the laptop boots, grabs the volume key from the TPM and goes about its business without needing a password. Should the drive be yanked and read from another machine, it will be encrypted and useless without the recovery key.
This is why universities need to have a class on basic computing sanitation. Part of this class's lab fee would be a decent laptop. One can argue what brand, but that's beside the point. Another offering by the university would be discounts on licensed software. I have seen one university offer Windows Server 2008 CDs for $25, XP for $5, and similar prices for Office, iWork, and OS X upgrades.
This basics class should teach computing essentials of labs such as logging on, making sure you are logged off, rebooting to make sure DeepFreeze cleaned everything off, saving stuff to one's home directory and not a temporary directory, and basic common courtesy when it comes to printing.
It should also teach the basics of what to do on the laptop. Not just buying a copy of Norton Antivirus and installing it, but also concerning about backups and where old files are stored that are not needed on a daily basis.
Of course this course should cover basic stuff like dealing with phishing E-mails (manually type the site's URL to verify, and do NOT click on the link), validating SSL certs (to show that www.bank.com isn't really www.bank1.com), and not downloading and running executables unless one knows they are from a trusted source should be covered.
Most people reading this on Slashdot have this knowledge as instinct. However, people will be surprised how many students do not know even the basics of computer security to guard the data on their machines. I have had to instruct many a student sporting a new Macbook where to buy an inexpensive portable 3.5" disk, and get Time Machine set up so they have a way to recover deleted files should disaster befall them later on in their college adventures. With Windows, because access to backup utilities depends greatly on the OS and edition, I recommend highly a third party utility like Retrospect or Acronis TrueImage. Add to this a subscription to Mozy (which allows unlimited data backed up for $5 a month per machine for home users), and this will cover almost any disaster that would befall a student's machine.
I graduated last December, so my experience is recent as well. Almost always, all the computer labs on campus are packed to capacity, and usually stays this way until late at night.
Labs provide several things:
First, a place to do last minute changes before printing. Yes, there are portable printers, but for students, they are both expensive in both initial expense and per ink cartridge. Connecting over a wireless network can be problematic for some computers, and finding the right printer in the right floor of the right building to print to can confuse some students who are barely able to stand up due to a hangover the night before.
Second, not every student wants to deal with a laptop all the time. It is nice to just carry around a USB flash drive, or just store files in a home directory.
Third, the computers in a computer lab run by competant admins are usually decently secure, provided you reboot them before use to ensure DeepFreeze rolls back all changes done by the previous person.
Fourth, there are apps that are very expensive. Not just Maple and Mathematica, but MiniTab, AutoCAD, SPSS, Cubase and plugins, Premiere, the CS suite, Microsoft Office, etc. Yes, one can get demo versions, and yes, one can make the "demo versions" have a very long evaluation period, but most students don't pirate either for legal/ethical reasons, or the fact that infected torrents are becoming more and more commonplace.
Finally, there is something nice about going in and checking mail and Web forums on a machine without having to either dig up a laptop or try to fumble with a smartphone's small screen. Just sit down, log in, do your E-mail and Web browsing, log off, and go about your business.
When I see the "you have nothing to hide" argument, I see people forget one thing when they use it:
Criminals want any and all information to strike as well. Have no locks on the doors to make it easier for police to do their duty, but it makes it a cinch for crooks to do a heist too.
Same with hard disk encryption. I use it because if my laptop gets stolen, I don't want the data on it being used for extortion/blackmail/ID theft. Enterprises use backup systems with AES encryption and advanced key management not to stay ahead of the FBI, but to keep a backup tape that gets lost from becoming a corporation-wrecking fiasco.
In the UK, the man in the middle ad servers are an issue too, and there is a possibility some bad guy is going to find a way to compromise one and then try to insert browser exploits into people's TCP/IP streams. Protecting your traffic from snoops and potential active attacks is not in any way dodging the law, its akin to making sure you have your doors locked when you leave.
The thing is that some file hosting is pretty expensive, especially if the demo program is pretty big. A lot of ISPs will charge by the gig, so people accessing a multi-gigabyte app will get expensive quite quickly. Even something fairly small (60-100 megs) will add up fast if it gets popular.
I know registration sucks, but downloads before Web, FTP and others were pretty rough. If you were new to the BBS scene, you had to either pay a sysop for download credit, or find someway of finding something relevant you can upload before you could download a single bit. Of course, you had to make some inane posts to the board's forums due to post/call radios, and all this was assuming you could get something else than a busy signal if you are trying to get to a popular board.
A bittorrent tracker is nice, but when people stop seeding, the content is as good as dead. Perhaps combine a tracker with a host that always seeds the stuff so at least there is one host that people can get content from, and if they are polite, they will stay on until they have uploaded as much as they downloaded.
The one thing about encryption -- key management is just as important as the algorithm used. A business has to figure out how they are going to manage keys. Are they going to use a passphrase that only the backup admins will know, or are they going to use some type of RSA key functionality? If private keys are used, how are they backed up?
There are a lot of factors involved, and one important thing is not depending on one single person as one doesn't depend on one single server. There should be some type of mechanism put in place to deal with an employee gone missing (or even worse, rogue.) For a smaller business, the risks may be low, but its something that should be thought about when planning a backup infrastructure and implementing it.
I'd also create a central file where all invoices are stored, preferably in a fire resistant file cabinet. When the BSA comes, they want invoices. License or CD proof of license, they pretty much ignore.
The BSA comes a knocking almost invariably when someone gets fired. The first thing a terminated employee will do (especially if they were fired for cause or not doing their job) is call the BSA in retaliation.
If one has a SMB, the best way is to get a software auditing utility (a brief Google search turned up Lansweeper), and audit machines monthly. Doing this, plus having physical files with the printed invoices, the BSA inquiry will be rather painless, because they will see that the company has their stuff together and will move on. Additionally, just as a matter of course, having a corporate policy that is more than just words about unlicensed software is important. This will help if some employee brought some pirated software that wasn't on the radar.
When working in IT, if I encounter unlicensed software installed by an employee (other than games), I check to see if I can make a PO for it. Then, the employee can continue using it without issue and the company's rear is covered.
My advice: If a firm is using pirated software and doesn't care, leave at once. Yes, this is a shitty economy, and I'm sure they will find someone with fewer scruples to come in. However, your reputation is on the line, and eventually the company will lay someone off that will immediately turn around and snitch about it. The company will then say this happened under *your* watch and it will harm your reputation, and you get fired anyway (for gross misconduct too, so no unemployment possible.)
Oh, if you have a MCSE or MCP, you are obligated by contract to report license violations, so legally, one can be hold liable as a person if they do not report the violations.
Exchange has evolved a lot. Take Exchange 2007 for example. On an internet-facing server, it is quite easy to enable anti-spam rules. Even better, they get updated weekly directly from MS. You can also add your favorite antivirus utility (you will end up paying "enterprise prices for it) to scan incoming and outgoing mail for CYA reasons. You also can add server to server connectors between companies so E-mail between your company and a customer never touches the Internet in the clear.
There is one thing I do wish Exchange 2007 had built in, and that would be some sort of application level backup mechanism for mailboxes. As of now, if you want to back up users, you will need to spring for a third party utility such as Backup Exec, Retrospect, or Microsoft's own Data Protection Manager.
Maybe the suggestion of making the backend of Exchange a SQL Server database is a good one. This way, mailboxes can be handled with the ton of DB tools available.
You never know though... I've seen other sysadmins wearing some odd items when woken up by a page or an emergency cellphone call.
SOE has tried this on some servers with their Station Exchange concept. It has gone over for the most part like a lead balloon.
Most gamers don't want to be earning their stuff, only to find they are outclassed by someone who dropped a couple C-notes for the same gear and who doesn't know the class basics in a group.
The true test of a Naxx run is Thaddius, perhaps Heigan. The guys who are dead on the floor are the ones who didn't follow instructions. Heigan, people can drop because of lag so it isn't as good.
Kel is also good, but if you got to Kel, you can probably knock him off, unless you have a Naxx raid of 7 healers and 18 death knights (which I've seen happen) and can't melee him down due to his chaining AoEs off the melee.
Everquest 2 does exactly this. You can get to level 80 in a tradeskill and still have the adventuring level be level 1 (although you will end up level 2-3 just due to discovery experience.) EQ2 also even has tradeskill instances where you or a group can work on making stuff for some NPCs to get loot drops, as well as exp.
Depends on the country you live in. Here in the US, criminal trespass is a crime, and can result in 6 months to a year in jail. Repeated offenses, or trespass with a weapon doubles that.
The Adamo is coming into a hard market segment:
If people want an ultralight laptop, like people pointed out, they can grab a Macbook Air. IIRC, you can just zero out the Air's disk and install Vista without needing Boot Camp if one felt like it. Or, one can keep OS X and use Boot Camp to make Windows XP work (which would be lighter on system resources).
If people wanted a Windows machine (where it is expressly noted that the machine is not a Mac) for professional use, Thinkpads are the black limousine of the laptop world. People can purchase a Thinkpad X Series.
This is nothing against Dell. Dell's competition just has better offerings than what it has in this market segment. If I were buying business desktop PCs, regular laptops, or servers, I'd strongly consider Dell. However, for a premium ultralight, the competition is ahead here.
This is what all OS makers bang into. The http://www.codinghorror.com/blog/archives/000347.html "dancing bunny" security hole. They can do their best, but if a user is determined to make a process run as root, they will, barring a "trusted" environment where even root/administrator doesn't completely control the system.
There are two programs included with Windows versions (XP and newer) that do pretty much this. sigverif.exe which verifies every file's signature, and sfc.exe which will compare installed Windows files against service pack files and will copy from OS media any files that have been changed or are missing.
A friend of mine did similar. His vehicle has two 25 gallon gas tanks. So, he routed one so it filled up from a non-obvious location and the second tank he filled up with water and used a non locking gas cap. It was not uncommon to see more than the usual amount of dead cars in parking lots, especially during last year when the price of gas spiked.
This is another advantage of tapes. Tapes are meant to be written to, put in their cases, and dropped into an offsire storage service's bin where once sealed, its out of your hands. Because tapes have relatively few moving parts similar to a hard disk, they can take the handling of a third party without issue, while hard disks usually need heavy padding.
For backups the ideal is a D2D2T setup because it allows for smaller backup windows, and if a client needs restore, it will have less effect on backups in progress than having the backups go directly to an autochanger.
Best of all worlds would be SSD becoming inexpensive enough so the cartridges that replace tapes in an autochanger. No moving parts means that they can take more rough handling, and with the SSD form factor, cartridges and libraries can be redesigned from the ground up for optimal performance.
There is another fact too. Tape can take more abuse than HDDs. If I drop a tape, I check to see if the spindle is still aligned, pop it back into place if it is not, and I will be almost certain that I will be able to retrieve any and all data contained on it. If I drop a hard disk onto the floor (especially a 3.5"), there is a chance that nothing on the drive will be able to be retrieved.
I still wonder about SSD lifetimes. Tape isn't perfect, but I can still access DLT IV tapes I put data on a decade ago. Hard disks, its somewhat random that a drive stored for many years will power on, overcome stiction, and be coaxed into retrieving its data. SSD, I have not seen much about how it can hold data for long term (over 7 years into decades) archiving.
One place I worked at did something slightly fancier a couple years ago before RAID 6 went into common use:
They had three hardware RAID enclosures which did the RAID calculations on the enclosure and appeared to the host as a single hard disk volume (each had a number of drives including one as a hot spare) plugged into a midrange UNIX server via fiber channel. Then the three volumes from the enclosures were configured as a RAID volume in software using Symantec's volume manager (formerly Veritas). This way if a drive fails while one enclosure is in degraded mode, the data is still accessible. It would take multiple controller failures, multiple drive failures in different enclosures, a combination of the above, or a sitewide disaster to lose the data contained.
With RAID 6, this is less of an issue because it would take three drive failures in the time it takes for one drive to rebuild to kill the stored data, but at the time RAID-ing the RAID arrays seemed to provide some decent redundancy.
As others have stated, running a VM is a wise choice as well as buying server grade components for maximum life.
I would add one addition though: Make sure to factor in backups as part of the system. The software that the original poster is using probably precludes backup software inside the VM, so one will need to backup the VM image files. I know VMWare can separate the files into 2 gigabyte chunks that can then be backed up to a volume using Backup Exec or Retrospect. This way, backups can be taken of the VM every night, and a restore is as simple as dumping the VM disk files back into the original directory.
I would recommend the backup volume be either an internal array doing RAID 1 or RAID 5/6, or an external RAID device such as a MyBook Mirror Edition or a Drobo that handles the "heavy lifting" of the RAID management for the computer and appearing as a single drive. This way, the backup data is protected from a single drive failure.
Finally, I'd also recommend periodically attaching an external hard disk, copying the backup data from the RAID volume, then unplugging the external hard disk and storing it offsite (perhaps an Iron Mountain tub.) Multiple ones would be best so you can do a grandfather-father-son rotation. Of course, don't forget to back up the backup software and its license keys (usually tossing it on a couple USB flash drives will do the trick.) If the VM image is small enough, you might be able to back it up to a USB flash drive, although I highly recommend backing the whole machine up, OS, applications, and the virtual machine.
Even though some hardware can last 15 years, I would not bet your data (and your business) on it, and highly recommend a two-tier backup solution so you can get back up and running if something does happen. Even the best servers will fail, which is why businesses that need 99.999% uptime go with clustering, high availibility, and multiple sites.
North Korea doesn't even need nukes to cause major economic damage to the West. All it has to do is start shelling Seoul and that would cause immense economic chaos in hours as the manufacturing supply chain for a lot of goods worldwide is cut.
Also, DPRK doesn't have to have a high tech delivery system to do damage with a nuclear vice. There are a lot of terrorist groups who would pay high dollars for a fully functioning bomb, and they would do the rest of the work.
This makes for an interesting business opportunity. A service similar to Mozy Pro except with better provisions for encrypting data [1] before it gets sent to the cloud. Then, should a business lose its colocated servers, they can be rebuilt from another location.
[1]: Data encryption is solid, but what is needed is a good enterprise-level key management system so if one employee leaves or goes rogue, the data can still be recovered with another key, and the rogue key removed
You could put a hypervisor on a lower level for this functionality, but that brings its own can of worms, including figuring out how to pass communication from hardware devices to the operating systems. For example, which OS should set the proper settings on a USB toaster?
Bitlocker does exactly this, assuming the laptop has a TPM chip. Once enabled and the recovery key saved somewhere secure, the laptop boots, grabs the volume key from the TPM and goes about its business without needing a password. Should the drive be yanked and read from another machine, it will be encrypted and useless without the recovery key.
Slight digression:
This is why universities need to have a class on basic computing sanitation. Part of this class's lab fee would be a decent laptop. One can argue what brand, but that's beside the point. Another offering by the university would be discounts on licensed software. I have seen one university offer Windows Server 2008 CDs for $25, XP for $5, and similar prices for Office, iWork, and OS X upgrades.
This basics class should teach computing essentials of labs such as logging on, making sure you are logged off, rebooting to make sure DeepFreeze cleaned everything off, saving stuff to one's home directory and not a temporary directory, and basic common courtesy when it comes to printing.
It should also teach the basics of what to do on the laptop. Not just buying a copy of Norton Antivirus and installing it, but also concerning about backups and where old files are stored that are not needed on a daily basis.
Of course this course should cover basic stuff like dealing with phishing E-mails (manually type the site's URL to verify, and do NOT click on the link), validating SSL certs (to show that www.bank.com isn't really www.bank1.com), and not downloading and running executables unless one knows they are from a trusted source should be covered.
Most people reading this on Slashdot have this knowledge as instinct. However, people will be surprised how many students do not know even the basics of computer security to guard the data on their machines. I have had to instruct many a student sporting a new Macbook where to buy an inexpensive portable 3.5" disk, and get Time Machine set up so they have a way to recover deleted files should disaster befall them later on in their college adventures. With Windows, because access to backup utilities depends greatly on the OS and edition, I recommend highly a third party utility like Retrospect or Acronis TrueImage. Add to this a subscription to Mozy (which allows unlimited data backed up for $5 a month per machine for home users), and this will cover almost any disaster that would befall a student's machine.
I graduated last December, so my experience is recent as well. Almost always, all the computer labs on campus are packed to capacity, and usually stays this way until late at night.
Labs provide several things:
First, a place to do last minute changes before printing. Yes, there are portable printers, but for students, they are both expensive in both initial expense and per ink cartridge. Connecting over a wireless network can be problematic for some computers, and finding the right printer in the right floor of the right building to print to can confuse some students who are barely able to stand up due to a hangover the night before.
Second, not every student wants to deal with a laptop all the time. It is nice to just carry around a USB flash drive, or just store files in a home directory.
Third, the computers in a computer lab run by competant admins are usually decently secure, provided you reboot them before use to ensure DeepFreeze rolls back all changes done by the previous person.
Fourth, there are apps that are very expensive. Not just Maple and Mathematica, but MiniTab, AutoCAD, SPSS, Cubase and plugins, Premiere, the CS suite, Microsoft Office, etc. Yes, one can get demo versions, and yes, one can make the "demo versions" have a very long evaluation period, but most students don't pirate either for legal/ethical reasons, or the fact that infected torrents are becoming more and more commonplace.
Finally, there is something nice about going in and checking mail and Web forums on a machine without having to either dig up a laptop or try to fumble with a smartphone's small screen. Just sit down, log in, do your E-mail and Web browsing, log off, and go about your business.
When I see the "you have nothing to hide" argument, I see people forget one thing when they use it:
Criminals want any and all information to strike as well. Have no locks on the doors to make it easier for police to do their duty, but it makes it a cinch for crooks to do a heist too.
Same with hard disk encryption. I use it because if my laptop gets stolen, I don't want the data on it being used for extortion/blackmail/ID theft. Enterprises use backup systems with AES encryption and advanced key management not to stay ahead of the FBI, but to keep a backup tape that gets lost from becoming a corporation-wrecking fiasco.
In the UK, the man in the middle ad servers are an issue too, and there is a possibility some bad guy is going to find a way to compromise one and then try to insert browser exploits into people's TCP/IP streams. Protecting your traffic from snoops and potential active attacks is not in any way dodging the law, its akin to making sure you have your doors locked when you leave.
The thing is that some file hosting is pretty expensive, especially if the demo program is pretty big. A lot of ISPs will charge by the gig, so people accessing a multi-gigabyte app will get expensive quite quickly. Even something fairly small (60-100 megs) will add up fast if it gets popular.
I know registration sucks, but downloads before Web, FTP and others were pretty rough. If you were new to the BBS scene, you had to either pay a sysop for download credit, or find someway of finding something relevant you can upload before you could download a single bit. Of course, you had to make some inane posts to the board's forums due to post/call radios, and all this was assuming you could get something else than a busy signal if you are trying to get to a popular board.
A bittorrent tracker is nice, but when people stop seeding, the content is as good as dead. Perhaps combine a tracker with a host that always seeds the stuff so at least there is one host that people can get content from, and if they are polite, they will stay on until they have uploaded as much as they downloaded.
The one thing about encryption -- key management is just as important as the algorithm used. A business has to figure out how they are going to manage keys. Are they going to use a passphrase that only the backup admins will know, or are they going to use some type of RSA key functionality? If private keys are used, how are they backed up?
There are a lot of factors involved, and one important thing is not depending on one single person as one doesn't depend on one single server. There should be some type of mechanism put in place to deal with an employee gone missing (or even worse, rogue.) For a smaller business, the risks may be low, but its something that should be thought about when planning a backup infrastructure and implementing it.
I'd also create a central file where all invoices are stored, preferably in a fire resistant file cabinet. When the BSA comes, they want invoices. License or CD proof of license, they pretty much ignore.
The BSA comes a knocking almost invariably when someone gets fired. The first thing a terminated employee will do (especially if they were fired for cause or not doing their job) is call the BSA in retaliation.
If one has a SMB, the best way is to get a software auditing utility (a brief Google search turned up Lansweeper), and audit machines monthly. Doing this, plus having physical files with the printed invoices, the BSA inquiry will be rather painless, because they will see that the company has their stuff together and will move on. Additionally, just as a matter of course, having a corporate policy that is more than just words about unlicensed software is important. This will help if some employee brought some pirated software that wasn't on the radar.
When working in IT, if I encounter unlicensed software installed by an employee (other than games), I check to see if I can make a PO for it. Then, the employee can continue using it without issue and the company's rear is covered.
My advice: If a firm is using pirated software and doesn't care, leave at once. Yes, this is a shitty economy, and I'm sure they will find someone with fewer scruples to come in. However, your reputation is on the line, and eventually the company will lay someone off that will immediately turn around and snitch about it. The company will then say this happened under *your* watch and it will harm your reputation, and you get fired anyway (for gross misconduct too, so no unemployment possible.)
Oh, if you have a MCSE or MCP, you are obligated by contract to report license violations, so legally, one can be hold liable as a person if they do not report the violations.