You may be right from a practical perspective.
When I look at, for example, a systemd service: XYZ.service which gets classified as unsafe using a systemd tool, namely systemd-analyze:
systemd-analyze security XYZ.service
then this makes me wonder what it means for this service to be unsafe, what makes it unsafe and if there are measures to be taken which can better its state of “unsafety”.
What I think is more like:
Look, we have a system here, we know it has many components that are vulnerable for one reason or other, no matter if there is an actual threat which might exploit this or not, I would like to learn what those reasons are and to reduce or remedy those vulnerabilities as much as possible with as less as possible loss of usability.
I know a ship at the harbor is much safer than at sea but it is not what it is meant for. So I still want be able to sail knowing that my vessel is as safe as possible.
That was my intention to post at the first place and pose the question.