Hello, I can't find any topics discussing this, but I'm no expert so maybe I'm just using the wrong terms.
After trying a local installation, I am wondering what happens if someone starts sending a lot of data, maybe even with the correct protocol, to my server. I guess that Traccar logs and saves on the DB anything it receives, even if the ID of the device is not one I've added to my list, right? So anyone could fill up my DB with random data if they know the address of the server? I see that there's no authentication from the device too, so if someone catches my device ID and server they can start sending random data?
Also, is it possible to disable all protocols that I'm not using and leave the ports closed, just to restrict the attack surface? (Is there a guide on how to secure a Traccar installation?)
Thanks
You are basically right. You can easily disable unused protocols by removing them from default config file.
I guess I'll have to up my security-through-obscurity game then, LOL.
Is there a feature to send me a notification if the server starts receiving data from IDs that are not on my list, or to just block them? If not I'll try to add that.
Are there open source hardware implementations that can be used with Traccar and offer some more security?
Well, if device id is not registered in the database Traccar will ignore it.
That's great, I thought it recorded it anyway. It should be enough for now. Thanks!
Hello, I can't find any topics discussing this, but I'm no expert so maybe I'm just using the wrong terms.
After trying a local installation, I am wondering what happens if someone starts sending a lot of data, maybe even with the correct protocol, to my server. I guess that Traccar logs and saves on the DB anything it receives, even if the ID of the device is not one I've added to my list, right? So anyone could fill up my DB with random data if they know the address of the server? I see that there's no authentication from the device too, so if someone catches my device ID and server they can start sending random data?
Also, is it possible to disable all protocols that I'm not using and leave the ports closed, just to restrict the attack surface? (Is there a guide on how to secure a Traccar installation?)
Thanks