Mark and others, I completely agree. Security has become to blanket of an excuse not to do anything. Ask your systems people to demonstrate the security holes they are worried about.