Andrew Hay has posted a very nice piece
on how war strategies evolved and how that compares to information security. He finishes it with this very nice line:"I believe that all security professionals should be students of military history and tactics. Seeing what failed for great generals will show us how to adapt to, and defend against, network and system attack situations in the future."
I definitely agree with him.