re: xdm passwordless logins

[matthew green <mrg%eterna.com.au@localhost>]

> But I think ~nobody does remote xdm or uses X terminals any more, and if
> xdm had a config PermitEmtpyPasswords that defaulted to yes if connected
> to 127.0.0.1/::1/unix-socket, and no if otherwise, that would be fine.

i like this idea, but please leave 127.0.0.1 out of the
"safe" zone, please.

X doesn't listen there by default so there's no point in
having our "secure zone" include, and it opens potential
attack vectors.