> I now think that there is a security advantage to using xdm to bring up > KDE - namely, that there is no unprotected console session which can be > hijacked by someone sitting down at the computer, finding the session > from which KDE was started, and putting startkde in the background. >
Well, what happens when they reboot the box, go in with boot -s, get the root shell and cause havoc? If you're that concerned about people sitting down in front of your machine to cause problems, then protect it with something physical (e.g. caged rack with lock).