Authentication on the tcp server?

I have q question,
on ESP32 I can connect it over wifi, and use a tcp connection to it.
This connection seems to not be authenticated nor encrypted

Have anyone explore using authentication on this connection?

I understand that there might be some challenges:

  • the medium is not safe (a wifi network),
  • using TLS over TCP would mean that another library is required in an already tight firmware size,
  • authentication without TLS doesn’t make much sense, as man-in-the-middle attacks would be possible.

Still, it is odd to me that I haven’t found any discussion about this.

Thanks!

Yes, esp32 web server not using https, however the linux native raspberry pi port we use certificate

Here some notes for Self-Host (docker and podman)

You would need to setup certificate or use LetsEcrypt to secure your web server

Also you could use the secured web frontend to your own deivce via serial

(this is nice for devices without any display or web server like the rak4631)

You could also flash a littlefs fs bin where the web server pages are removed - only contains

Meshtastic Device Report information

(if you compile using platformio without supplying the web server pages for example)

image

The ESP32 web server is also used with the Range Test Module to store csv
only available on ESP32-based devices

Im preparing for a 2.4Ghz LoRa Range test using the M5Stack Stamp C3 with 2.4Ghz LoRa

rangetest map - to import your csv


and outdoor wifi enclosure like this, provided i have all the correct connectors