But then, that's sort of the opposite extreme in terms of security over marketing.
But security isn't a product, is it? Therefore, I don't see how you can make that statement and say, "Windows 2000 is a secure OS" in the same post.
I'll believe it when I see the rate of security bulletins decline...many of which are more along the lines of basic services rather than apps. The last few posted to BUGTRAQ dealt with RPC, passwords, Task manager, TCP, SSL, and system file overwriting, for example (not to say there weren't more that had to do with apps--just that there are many that didn't).