Securing the connection on the device data port

zumersandro7 months ago

Hello everyone,
I've been using the platform self-hosting a Traccar server on a Raspberry Pi, using a DDNS (No-IP).
Following this quick guide I've secured the connection with HTTPS, and everything works.
But here is the catch: I still have to keep port 5023 open on my router in order to receive the GPS data from the GPS receiver (S20 GPS Tracker).
The question is: is the data on this port encrypted in any way?
And if not: is there any method to secure also this data, since it contains information about the device location, ecc?

Thanks a lot, and love this project!

Anton Tananaev7 months ago

It's not encrypted. The only way to encrypt it is by using special SIM card that connects directly to you private network via encrypted channel.

zumersandro7 months ago

Thank you for your answer.
So the answer is: not possible with commonly used SIM card, since they do not encrypt traffic.
Guess I'll have to live with that.

Richard Acosta7 months ago

A SIMcard will not make such thing.
As not any other connection mean encrypts data either.

Simcard only provides the connecting medium, everything else is on the involved parties, OSs, server, devices, etc...

You can use the same SIMcard "without" such encryption on a cellphone and make encrypted connections between devices, to web pages or using ssh... etc.

For the data to be encrypted, the device must send encrypted data and the server must receive and decrypt such data.

Anton Tananaev7 months ago

SIM card can connect directly to your private network via an encrypted tunnel. Many companies offer this service. Here's just an example from AT&T in the US:

https://www.business.att.com/products/private-mobile-connection.html

Richard Acosta7 months ago

Is a separate service with extra layers and is not what he asked for.

And still you can achieve it without one of those SIMcards.