I was just wondering what happens when the local X server connects to a remote XDM session. Isn't it possible for a user that doesn't exist on the local machine to log into a remote machine? Who then does the local X server run as once logged into the remote? If it is the same user (root) as before the login, couldn't that user simply not be root to start with? Would simply treating all logins as remote logins solve this easily?