If you start the tracker and there is no WLAN configured or the configured WLAN is not in range, the default WLAN hotspot is started.
This uses the configured callsign and SSID as network SSID and is therefore very easy to find and identify.
Since there is a default password for the WLAN that cannot be changed via the web interface, someone who knows this (publicly discoverable) data can connect and change the tracker.
I therefore suggest that the WLAN password is made configurable via the web interface.
If you start the tracker and there is no WLAN configured or the configured WLAN is not in range, the default WLAN hotspot is started. This uses the configured callsign and SSID as network SSID and is therefore very easy to find and identify. Since there is a default password for the WLAN that cannot be changed via the web interface, someone who knows this (publicly discoverable) data can connect and change the tracker.
I therefore suggest that the WLAN password is made configurable via the web interface.