Argon
Posts: 109
Joined: Thu Aug 25, 2011 11:04 am

Secure domotica system from outside

Fri Mar 21, 2014 1:26 pm

Hello,

I made a Thermostat with my Raspberry Pi. I can control this with my smartphone if i'm connected to the WIFI inhouse.
Now I want to control this from the outside (2g/3g connection). But if I open the connection from te www to my Raspberry Pi web server, everyone can control my Thermostat :-).

So, what is the solution that other users use to secure this? I can place a password on the website, but that's annoying to enter a password each time you want to open the webpage. Is there another solution like grant a smartphone/tablet with a specific MAC / SN / ...

I'm curious ! :-)

Tarcas
Posts: 741
Joined: Thu Jan 09, 2014 5:38 am
Location: USA

Re: Secure domotica system from outside

Fri Mar 21, 2014 1:45 pm

Use the password-protected web page, and have your smartphone browser remember the password. I'm not sure if a webpage can request a MAC or SN from a device, but you could also set a cookie with some big long passphrase, and if the cookie with the correct passphrase is on the device, then automatically allow access. (Might want to automatically change the passphrase from time to time in case you lose a device.)

jraff1
Posts: 11
Joined: Wed Dec 21, 2011 11:58 pm

Re: Secure domotica system from outside

Fri Mar 21, 2014 1:57 pm

Be VERY careful when one does this. http://www.raspberrypi.org/phpBB3/posti ... 37&t=72694# The hackers / script kiddies will be looking for ANY way to get into your local network, no matter how small or insignificant. Passwords are MANDATORY! Change ports, change IP, change what ever else one can, and make it DIFFICULT otherwise they WILL get in and muck up all of your great work. Search "hardening personal network" and start reading.
---
Also one usually need to know their IP address, check
Dyn Site - http://dyn.com/
or No-IP.com - http://www.noip.com/free
or Alternative Internet DNS services
http://en.wikipedia.org/wiki/Category:A ... S_services
or Check IP - http://checkip.dyndns.org/
or IP Echo - http://ipecho.net/

StormUA
Posts: 2
Joined: Fri Mar 21, 2014 3:19 pm

Re: Secure domotica system from outside

Fri Mar 21, 2014 3:23 pm

You can use a VPN for higher security. Your smartphone connects to your home router with OpenWRT/DDWRT software, and you at home. Control anything through 3g/2g like through WiFi at home - only ping would be much longer :) Security would be high enough for home use.

Argon
Posts: 109
Joined: Thu Aug 25, 2011 11:04 am

Re: Secure domotica system from outside

Sat Mar 22, 2014 2:16 pm

VPN is an option, but like you know, it's another step to just read/change the temperature in the house.
It would be easy to juste open a browser on the smartphone and able to read/change the temperature without setting up the VPN at first. But, like you said, it's a secure way !

A webpage with a password on it, and let the Android devices remember this would be my preference at this momente. Other options/ideas are still welcome.

Return to “Automation, sensing and robotics”