> Removing the USB key after boot in this senario would not affect it, > since the key is read once, correct? Down the road perhaps the UI > would be patched to recognize the removal of the smartcard/like device > and lock the screen. Just a thought! Pam_usb (http://www.pamusb.org/) does something like this. Pam_usb is used to authenticate individual users against a USB drive but the xlock concept is very similar to your idea. -- Mike
