I have q question,
on ESP32 I can connect it over wifi, and use a tcp connection to it.
This connection seems to not be authenticated nor encrypted
Have anyone explore using authentication on this connection?
I understand that there might be some challenges:
- the medium is not safe (a wifi network),
- using TLS over TCP would mean that another library is required in an already tight firmware size,
- authentication without TLS doesn’t make much sense, as man-in-the-middle attacks would be possible.
Still, it is odd to me that I haven’t found any discussion about this.
Thanks!
Yes, esp32 web server not using https, however the linux native raspberry pi port we use certificate
Here some notes for Self-Host (docker and podman)
You would need to setup certificate or use LetsEcrypt to secure your web server
Also you could use the secured web frontend to your own deivce via serial
(this is nice for devices without any display or web server like the rak4631)
You could also flash a littlefs fs bin where the web server pages are removed - only contains
Meshtastic Device Report information
(if you compile using platformio without supplying the web server pages for example)
The ESP32 web server is also used with the Range Test Module to store csv
only available on ESP32-based devices
Im preparing for a 2.4Ghz LoRa Range test using the M5Stack Stamp C3 with 2.4Ghz LoRa
rangetest map - to import your csv
and outdoor wifi enclosure like this, provided i have all the correct connectors