ISTM the simplest solution has two steps:
- setup X to run one application and nothing else. Someone suggest something as simple as:Whether you use a window manager or not, you should lockdown X to prevent switching to virtual terminals, etc as explained in a link above.
Code: Select all
startx /usr/bin/google-chrome --kiosk
- Have that application do only what you want it to do and nothing else
If you use MX or antiX then I also recommend using a live system such as a frugal install. Or you could boot a live-usb with the "toram" option and then unplug the live-usb and put it in your pocket. This ensures that the system will always boot into the same state even if someone breaks through the kiosk. For development, set things up on the live system with root persistence enabled and then when it is all ready, run live-remaster and disable root persistence when you have it set up the way you want. If you have a fast usb-3.0 stick then I recommend using static root persistence, not dynamic.