I've noticed this topic isn't as hot of a topic as it should be. It seems like people in security are just looking to have restrictions issued to them in order to follow, rather than putting in thier own personal techniques or suggestions. This is a Computer Security Based Community (correct?). What are your opinions on this subject matter?