Re: Relying on the unreliable
I'd totally agree, except that users click away any notification windows without reading them. "Yeah, just do that and stop nagging me and give me my [ pron / warez / cracks / whatever ]."
It is quite hard to train users not to do this, not just blindly follow some links, or download stuff and execute it, or just open any old email attachment. "But I only ran it once" they blurb.
Security is based on education of users and admins and all involved. I think all of us went through a bunch of virus infections of our machines when we were young, freely sharing stuff with friends on floppy disks, spreading whatever was on there through the whole circle of friends. And boom, some files could no longer be recovered. That taught us... not an awful lot, admittedly, but as we repeated those mistakes we learned. But then we had no internet, the machines did not store all of our lives, there was no online banking, so the damage was limited. We went through it the hard way. Education on these things was very limited, our parents had not much of a clue (well, that's what kids think anyway, in each generation).