SwiftOnSecurityOne of the biggest security expertise redpills is this is unironically a good idea and the time spent making fun of it was ill-advised for most users whose physical security threat is not a factor in comparison.
Overcoming the incentive to dunk on “users” behavior is an important element in maturing your security understanding. You have a set of levers to pull. Human nature is not one of them. Deal with that or be a righteous failure.
Goblin@SwiftOnSecurity People who learned dunking on users for mistakes, fall back on that pattern far too easy as well.
The colleague of a friend was in a support call with a software provider, who became so toxic, she threatened to call his boss and took a smoking break to calm down. After she returned, it turned out, that her problem stemmed from him having given her too few access rights.
Of course, to correct this, he then gave her admin rights, which was far more, than her role should have....