Security threats

[paffogorriones]

Traccar require to forward a device specific port to allow communication to your GPS device,
how do we mitigate this risk ?

• gps device rely on sim cards
• sim card change ip constantly , we cant just whitelist our device IP and block any other ip .

During setup we need to set imei of device - i'm unsure if traccar is able to use this information and reject any other incoming data.
There is no authentication required from my understanding .

in my brief use of traccar i was getting heaps of intrusion detection blocked by firewall - bit scary

I read in the comment that we can not update Traccar verison ? is this correct ?
Older version of Traccar have security vulnerabilities :
CV-202-42-4809 - Path traversal
CV-202-43-1214 - unrestricted file upload

If we can not upgrade to traccar 6 this add-on is a security threat .

Any insight or recommendation is highly appreciated
thanks