Read this earlier today, and I found some very good points within, especially the notion of "Enumerating Badness" as a stupid premise. Why have security software that must maintain a list of thousands of harmful programs to block--which must be constantly updated--instead of simply allowing only authorized programs to run. Great idea in principle, though I expect the application would be difficult, especially at the home user level.
The idea goes off the rails in the "block all attachments" rants, because I legitimately receive exe files and have the good sense to know which ones to run and which not to. Some of these extreme countermeasures could easily toss out the baby with the bath water.
Still, required reading for IT pros, as far as I'm concerned.
Keep Up with TechRepublic