I received my first comment spam on the Monday from i-cash-loans .com originating shortly after i enabled html in my comments.  While showing up under Google is nifty it would also appear to be a curse, at least DasBlog performed admirably and denied the post.  But this brings to mind other issues, as I read Nick's blog this morning Desktop software is paralyzed by fear(or rather end users are) I couldn't help but think,  how bad the state of email is in regards to spam and Internet surfing is regarding adware and spyware.  In fact i understand Microsoft's paternalistic approach to vista and IE7,  arguably though Vista's UAC prompt is so poorly executed that it will just desensetize end users to either always click allow(they will learn this option makes what they want to happen work.).  Vista and Xp both flag executable and zips as blocked if you down load them form the web(which is why I use 7-zip) So now we have taught the user not to trust any thing that doesn't come on a cd.  As a developer I find this very annoying my company plays by the rules we have an activex control that allows websites to interop with our flagship product, but now in Vista the control will only work if IE7's protected mode is disabled(default for the trusted site zone).  What a pain for all our vendors and all the end users.  I think in the end the only solution to these problems is strong identity.  We simply need the ability to say I trust Microsoft or Calyx don't bother me with the details.