That RFC was the first thing that came to mind for me...
some folks will read ".secure" as ".pwn-this-i-dare-you" and it will happen eventually unless you air-gap any ".secure" machine from the "real" web. This idea is about as effective as the evil bit RFC imho, just less funny.
You say this like it's a bug, but it's a feature. Your servers don't get hardened by being ignored, they get hardened by being under continuous assault. The ignored servers are the ones the hackers waltz into with an exploit patched by the vendor six years ago.
some folks will read ".secure" as ".pwn-this-i-dare-you" and it will happen eventually unless you air-gap any ".secure" machine from the "real" web. This idea is about as effective as the evil bit RFC imho, just less funny.