I was just wondering if I could get some comments on the security aspects involved when trying to choose between two different kiosk mode startup strategies. I am especially interested in comments that assumes that the kiosk computer is running an Live OS built using the live-helper.
Start X and a full screen kiosk application at the end of the boot process, without logging in at all.
Make the rc script that starts the application wait, and if the application is closed, shut down the operating system completely.
Enable automatic login and automatic start of an X session and the full screen kiosk application, maybe by listing the kiosk application as the one and only X client to be started (defined in .xinitrc?).
Add a hook script somehow, that shuts the computer down upon exiting the application and/or the X session.
Is the one or the other more vulnerable to attacks, and in that case why?
Lägg till karta och vägbeskrivning för din fest. Visa vägen!