I know that the W3 FAQ was not making the same point as this article. I just thought the W3 FAQ made nice reading in addition to this article.
I thought both made valid and interesting points about what consititutes a reliable, usable system. I felt the similarities lay in their treatment of security, not in the context of a new security product, but in managing any system with an eye towards using the minimum amount of hardened services necessary to do the job.
You make a valid point about the ultimate importance of making sure your system, no matter what it is or when it was made, has the latest patches applied by a knowledgeable admin. Its a nice point in addition to this article, as well :)