yes i can see your concern ... and we are concerned as well .. and i like its very much that you are giving your thoughts about our system .. every input is of great value as we are just deciding which path to follow .. and we would like to skip any paths which could give troubles
one extra security which is built in is that the traffic automats are not directly on the internet .. you have to dial up to them and know the phone number .. which is the main security .. after that the zope/php/'something else?' will have to block the people who know the phonenumber and know how to use the webserver.
in fact its not a traffic automat which is connected to the webserver, but a dynamic ..hmm..dont know the english word.. a dynamic 'pole which rises out of the ground to block entry' .. the webserver will have access to the statistics about the detectors and the rising and dropping of the 'pole' and everything else we can detect
.. also on the highest authorisaztion levels there will be some commands available to drop the 'pole' to give access to 1 car, or to drop all of them in case of emergency (when the police/firesquad/first aid/... have to entry the center of town real quick) .. also when the webserver goes down the 'poles' will drop
so its still having some effect on the traffic, but not on the ordinary traffic lights .. although that might be plans for the future .. i dont know about it yet .. they told me nothing about that yet
.. but i can imagine they are thinking about it.
the market is asking for management-from-a-distance ... and we have to create & deliver it
we are trying to get as much input about the security about such systems as possible .. and love any suggestions and alternatives as well
(as we are lacking some real experience in webbased and linux and security protocols on those
)