It's always been my understanding that once someone gets physical access to your machine, all bets are off in terms of security. Even if the person has limited technical ability, they can ruin things with a sledgehammer. If they're more technically inclined, as others have mentioned, BIOS stuff...