zen, it sounds almost like Cyberinsecurity: The Cost of Monopoly. Reality is we've been doing this for quite a while to varying degrees (e.g., BIND for DNS, Apache for HTTP). Although I will say that I haven't seen anyone take it to the degree that Microsoft has. I worry about putting everything into one since it removes, to a degree, the idea of layers of security. One of the reasons why, IMO, Linux/Unix doesn't have as many overriding threats (besides smaller audience/usage) is the diversity that exists. While to a newbie it may seem daunting, the reality is that there is safety in numbers so to speak.

Sybari has told me that they will continue to product their product as they have but I wonder how long that will last or how quickly it will change. When you have an attitude that "vulnerabilities don't exist until someone knows about them", you can get worried.

I have found, unfortunately, that there is a triangle to security. The three sides are: security, ease of use and stability. You can, however, only pick two. So which ones do you gamble on?