Bob,
In a day like today, where remote console option are quite prolific, console only direct access to root account policies are coming short of satisfying the requirement of being on-site with physical access to the server. When you are forced to insert a media to break into your own system, it is an added leel of security. But after all, someone will need some way of accessing this server and in the ultimate end, security department will need to trust at least ONE admin. And needless to say, nothing is 100% secure, but adding another level of complexity to the breaking into the system makes it more difficult to be broken in, should a mishap takes place and an unauthorized person gains access into some level of secured perimeter.
When it comes to security, at some point, you need to take your logical hat off, I came to realize and not to fight, by questioning the authority. If they want to feel safe under a false sense of security, let it be. You will be much happier.
________________________________
UNIX because I majored in cryptology...
