Then what? Use them as the scapegoat when the network does get compromised? Feels like the exact opposite of blameless postmortems.