I would much rather cut down the mightiest tree in the forest...with a Herring!!
The term forest refers to all the objects that are managed by an Active Directory
database. A forest can contain a single domain, domain trees, or even multiple
domains. The ability to have multiple domains within a forest does away with the
need to treat each domain as a separate unit of security.
A tree, or domain tree, is a domain plus any subdomains (in other words, child
domains) contained within that domain. Recall that the namespace of a subdomain
is always subnet.domainname.tld and hosts within the subdomain have names like
something.subnet.domain.tld.
Now dammit I have enough bloody students to deal with