Right---the entire process trees were started by the user for some specific purpose, and this mechanism can't just arbitrarily kill parts of that tree, so, as you point out, the children of the 'whitelisted' processes would would have to inherit the immunity.That's hardly useful, as "screen" alone is useless as it's just a frontend to other programs (such as a shell that is run inside the "screen" instance), and if we kill those, then "screen" doesn't need to be around either...