Secure domotica system from outside

[Argon]

Hello,

I made a Thermostat with my Raspberry Pi. I can control this with my smartphone if i'm connected to the WIFI inhouse.
Now I want to control this from the outside (2g/3g connection). But if I open the connection from te www to my Raspberry Pi web server, everyone can control my Thermostat .

So, what is the solution that other users use to secure this? I can place a password on the website, but that's annoying to enter a password each time you want to open the webpage. Is there another solution like grant a smartphone/tablet with a specific MAC / SN / ...

I'm curious !

[Tarcas]

Use the password-protected web page, and have your smartphone browser remember the password. I'm not sure if a webpage can request a MAC or SN from a device, but you could also set a cookie with some big long passphrase, and if the cookie with the correct passphrase is on the device, then automatically allow access. (Might want to automatically change the passphrase from time to time in case you lose a device.)

[jraff1]

Be VERY careful when one does this. http://www.raspberrypi.org/phpBB3/posti ... 37&t=72694# The hackers / script kiddies will be looking for ANY way to get into your local network, no matter how small or insignificant. Passwords are MANDATORY! Change ports, change IP, change what ever else one can, and make it DIFFICULT otherwise they WILL get in and muck up all of your great work. Search "hardening personal network" and start reading.
---
Also one usually need to know their IP address, check
Dyn Site - http://dyn.com/
or No-IP.com - http://www.noip.com/free
or Alternative Internet DNS services
http://en.wikipedia.org/wiki/Category:A ... S_services
or Check IP - http://checkip.dyndns.org/
or IP Echo - http://ipecho.net/

[StormUA]

You can use a VPN for higher security. Your smartphone connects to your home router with OpenWRT/DDWRT software, and you at home. Control anything through 3g/2g like through WiFi at home - only ping would be much longer Security would be high enough for home use.

[Argon]

VPN is an option, but like you know, it's another step to just read/change the temperature in the house.
It would be easy to juste open a browser on the smartphone and able to read/change the temperature without setting up the VPN at first. But, like you said, it's a secure way !

A webpage with a password on it, and let the Android devices remember this would be my preference at this momente. Other options/ideas are still welcome.