Agreed.
What he's proposing is simply to ignore the rule No 1 of network security: never trust anyone, specially you users.
This reminds me of a place I worked where one of the computers kept getting infected with a virus, even when their files were on regularly scanned network storage. After some time I found out that everytime I cleared the virus (which could not be repaired by my AV, so I had to delete the file) someone that used that computer restored the infected file from a floppy disk, which they never bothered to scan!
It is impossible to enjoy idling thoroughly unless one has plenty of work to do. -- Jerome Klapka Jerome