{"id":47076,"date":"2023-10-18T11:23:42","date_gmt":"2023-10-18T16:23:42","guid":{"rendered":"https:\/\/www.rosehosting.com\/blog\/?p=47076"},"modified":"2023-10-18T11:30:18","modified_gmt":"2023-10-18T16:30:18","slug":"how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux","status":"publish","type":"post","link":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/","title":{"rendered":"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux"},"content":{"rendered":"<div id=\"bsf_rt_marker\"><\/div>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"1024\" height=\"576\" src=\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg\" alt=\"how to fix http2 rapid reset cve-2023-44487 on linux\" class=\"wp-image-47136\" srcset=\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg 1024w, https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux-300x169.jpg 300w, https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux-150x84.jpg 150w, https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux-768x432.jpg 768w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>The most recent vulnerability sweeping across CDNs and web server development teams is <a href=\"https:\/\/www.cve.org\/CVERecord?id=CVE-2023-44487\" rel=\"nofollow\">CVE-2023-44487<\/a>, or the HTTP\/2 Rapid Reset vulnerability. In this article, we&#8217;ll be giving you our explanation on what this vulnerability does, as well as how to protect yourself from it. We&#8217;ll also go over the latest news on this vulnerability&#8217;s patches.<\/p>\n\n\n\n<!--more-->\n\n\n\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_65 counter-hierarchy ez-toc-counter ez-toc-transparent ez-toc-container-direction\">\n<p class=\"ez-toc-title\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-663b1904dae28\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"ez-toc-cssicon\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-663b1904dae28\"  aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#What-is-the-HTTP2-Rapid-Reset-vulnerability\" title=\"What is the HTTP\/2 Rapid Reset vulnerability?\">What is the HTTP\/2 Rapid Reset vulnerability?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#How-does-this-vulnerability-affect-my-websites\" title=\"How does this vulnerability affect my websites?\">How does this vulnerability affect my websites?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#How-do-I-fix-this-vulnerability\" title=\"How do I fix this vulnerability?\">How do I fix this vulnerability?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#Conclusion\" title=\"Conclusion\">Conclusion<\/a><\/li><\/ul><\/nav><\/div>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What-is-the-HTTP2-Rapid-Reset-vulnerability\"><\/span>What is the HTTP\/2 Rapid Reset vulnerability?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Simply put, this vulnerability abuses part of the HTTP\/2 specification. HTTP\/2 supports multiple requests at the same time, which helps with performance. However, this feature can be exploited when combined with the use of the RST_STREAM command. That command cancels the open connection from having to respond with any data, which normally is a good thing. However, since the connection is never fully established, this can be exploited. <\/p>\n\n\n\n<p>By requesting and cancelling each request, the abuser never hits a concurrent request limit. This allows the attackers to scale this attack to huge levels. <a href=\"https:\/\/blog.cloudflare.com\/technical-breakdown-http2-rapid-reset-ddos-attack\/\" rel=\"nofollow\">CloudFlare set a new record<\/a> in mitigated requests per second &#8211; 201 million requests per second caught by their DDoS system. <\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"How-does-this-vulnerability-affect-my-websites\"><\/span>How does this vulnerability affect my websites?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>This vulnerability can cause huge problems for those using unpatched web servers or don&#8217;t use a CDN that supports mitigating this attack vector. Attackers will be able to perform an enormous number of requests to your website without requiring many computers to do so. It&#8217;s possible that even one computer will be enough to bring down your websites completely. <\/p>\n\n\n\n<p>This kind of attack can also affect other services that share a server with your website. For example, your server&#8217;s CPU cycles or network bandwidth may get used up completely as your server tries to handle all of the requests. That&#8217;s why it&#8217;s critical to protect yourself from this vulnerability.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"How-do-I-fix-this-vulnerability\"><\/span>How do I fix this vulnerability?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Currently the situation is a little unclear on fixing this vulnerability. The vulnerability takes advantage of the core functionality of the HTTP\/2 specification, so an actual &#8220;fix&#8221; isn&#8217;t straightforward. NGINX <a href=\"https:\/\/www.nginx.com\/blog\/http-2-rapid-reset-attack-impacting-f5-nginx-products\/\">announced configuration changes<\/a> that you can make to reduce the risk as much as possible. <\/p>\n\n\n\n<h3 class=\"wp-block-heading\">How to fix HTTP\/2 Rapid Reset on NGINX:<\/h3>\n\n\n\n<p>These changes should work on any Linux distribution that supports running a recent version of NGINX.<\/p>\n\n\n\n<ul>\n<li>Set your <a href=\"http:\/\/nginx.org\/en\/docs\/http\/ngx_http_core_module.html#keepalive_requests\" rel=\"nofollow\">keepalive_requests<\/a> value to the default of 1000 requests. <\/li>\n\n\n\n<li>Set <a href=\"http:\/\/nginx.org\/en\/docs\/http\/ngx_http_v2_module.html#http2_max_concurrent_streams\" rel=\"nofollow\">http2_max_concurrent_streams<\/a> to the default of 128 streams.<\/li>\n\n\n\n<li>Set <a href=\"https:\/\/nginx.org\/en\/docs\/http\/ngx_http_limit_conn_module.html\" rel=\"nofollow\">limit_conn<\/a> to a value that makes sense for the number of connections a single visitor might make to your site.<\/li>\n\n\n\n<li>Set <a href=\"https:\/\/nginx.org\/en\/docs\/http\/ngx_http_limit_req_module.html\" rel=\"nofollow\">limit_req<\/a> to a reasonable number for your website&#8217;s use case. This controls the number of requests from one visitor that will get processed per each period of time.<\/li>\n<\/ul>\n\n\n\n<p>Here&#8217;s an example of a server configuration with all recommended settings applied:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>html {\n\n    limit_conn_zone $binary_remote_addr zone=perip:10m;\n    limit_req_zone $binary_remote_addr zone=perip:10m rate=1r\/s;\n\n    server {\n        listen your.ip.address.here:443 ssl http2 default_server;\n        keepalive_requests 1000;\n        http2_max_concurrent_streams 128;\n        limit_conn perip 10;\n        limit_req zone=perip burst=5 nodelay;\n\n        &lt;continue your website configuration here&gt;\n    }\n\n}<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">How to fix HTTP\/2 Rapid Reset on Apache or HTTPD:<\/h3>\n\n\n\n<p>Apache or HTTPD are not fully affected by the vulnerability CVE-2023-44487 (HTTP\/2 Rapid Reset) as confirmed by <a href=\"https:\/\/github.com\/apache\/httpd-site\/pull\/10\/files\/0ed0b409383b2ab17c8c04a59b6365c3a27a4920\">this message<\/a> on GitHub. There is a risk of increased CPU usage when someone tries to attack your Apache instance, however this can also be prevented. The full fix depends on a patched version of <strong>libnghttp2<\/strong>. Unfortunately, it may take some time for that patch to be released as part of Apache. You may need to wait for a newer version of Apache that comes with the patched <strong>libnghttp2<\/strong> library.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">How to fix HTTP\/2 Rapid Reset on any web server:<\/h3>\n\n\n\n<p>Currently the easiest and most straightforward way to protect your websites from the CVE-2023-44487 vulnerability is to use a CDN that has DDoS mitigations in place for this vulnerability. For example, CloudFlare has full protection against the HTTP\/2 Rapid Reset vulnerability. The same applies for <a href=\"https:\/\/msrc.microsoft.com\/blog\/2023\/10\/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http\/2\/\">Microsoft Azure<\/a>, <a href=\"https:\/\/www.fastlystatus.com\/incident\/376098\">Fastly<\/a>, <a href=\"https:\/\/aws.amazon.com\/security\/security-bulletins\/AWS-2023-011\/\">Amazon Web Services<\/a>, <a href=\"https:\/\/cloud.google.com\/blog\/products\/identity-security\/how-it-works-the-novel-http2-rapid-reset-ddos-attack\">Google Cloud<\/a>, and so on. It&#8217;s important that your CDN supports Layer 7 or application layer attack mitigation. <\/p>\n\n\n\n<p>Another option that may be acceptable in some scenarios is to disable the use of HTTP\/2 altogether and switch to HTTP\/1.1. This however can drastically affect the performance of your website. It&#8217;s important to gauge the risk of an attack on your website and decide whether the speed penalty is worthwhile for your use case. <\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Conclusion\"><\/span>Conclusion<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Needless to say, this is a fascinating exploit of the HTTP\/2 specification. If there are any updates to this situation, we will monitor and update this article with new fixes as they become available. For now, if you use a CDN with DDoS protection that supports Layer 7 attack mitigation, you are most likely safe. <\/p>\n\n\n\n<p>If you use our <a href=\"https:\/\/www.rosehosting.com\/linux-vps-hosting\/\">Managed Linux VPS<\/a> hosting services, we can set up CloudFlare for you to protect you from DDoS attacks. Additionally, we will apply any available patches and best practices to your web servers to protect you from this Rapid Reset vulnerability. That&#8217;s all part of our fully managed support, which comes included with every VPS at no extra cost. <\/p>\n\n\n\n<p>Did you find this post informative or helpful? Share it with those that can also benefit from protecting their websites and businesses! We appreciate you reading this post. If you liked it, feel free to leave a comment below.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The most recent vulnerability sweeping across CDNs and web server development teams is CVE-2023-44487, or the HTTP\/2 Rapid Reset vulnerability. &#8230; <\/p>\n<p class=\"read-more-container\"><a title=\"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux\" class=\"read-more button\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#more-47076\" aria-label=\"Read more about How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux\">Read More<\/a><\/p>\n","protected":false},"author":4,"featured_media":47136,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2071,1701,13],"tags":[37,27,49,394],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.6 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux - RoseHosting<\/title>\n<meta name=\"description\" content=\"Don&#039;t let your websites get overwhelmed by HTTP\/2 Rapid Reset. Read our simple guide on how to protect your web server from attacks.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux - RoseHosting\" \/>\n<meta property=\"og:description\" content=\"Don&#039;t let your websites get overwhelmed by HTTP\/2 Rapid Reset. Read our simple guide on how to protect your web server from attacks.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/\" \/>\n<meta property=\"og:site_name\" content=\"RoseHosting\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/RoseHosting\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/rosehosting.helpdesk\" \/>\n<meta property=\"article:published_time\" content=\"2023-10-18T16:23:42+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-10-18T16:30:18+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"576\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Jeff Wilson\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@rosehosting\" \/>\n<meta name=\"twitter:site\" content=\"@rosehosting\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jeff Wilson\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/\"},\"author\":{\"name\":\"Jeff Wilson\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/7ce77a842fa6a9a7f8efa186f2353713\"},\"headline\":\"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux\",\"datePublished\":\"2023-10-18T16:23:42+00:00\",\"dateModified\":\"2023-10-18T16:30:18+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/\"},\"wordCount\":849,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg\",\"keywords\":[\"apache\",\"Linux\",\"nginx\",\"vulnerability\"],\"articleSection\":[\"Linux\",\"Networking and Domains\",\"Tutorials\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/\",\"url\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/\",\"name\":\"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux - RoseHosting\",\"isPartOf\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg\",\"datePublished\":\"2023-10-18T16:23:42+00:00\",\"dateModified\":\"2023-10-18T16:30:18+00:00\",\"description\":\"Don't let your websites get overwhelmed by HTTP\/2 Rapid Reset. Read our simple guide on how to protect your web server from attacks.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#primaryimage\",\"url\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg\",\"contentUrl\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg\",\"width\":1024,\"height\":576,\"caption\":\"how to fix http2 rapid reset cve-2023-44487 on linux\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.rosehosting.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#website\",\"url\":\"https:\/\/www.rosehosting.com\/blog\/\",\"name\":\"RoseHosting\",\"description\":\"Premium Linux Tutorials Since 2001\",\"publisher\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.rosehosting.com\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#organization\",\"name\":\"RoseHosting\",\"url\":\"https:\/\/www.rosehosting.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2022\/03\/android-chrome-192x192-1.png\",\"contentUrl\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2022\/03\/android-chrome-192x192-1.png\",\"width\":192,\"height\":192,\"caption\":\"RoseHosting\"},\"image\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/RoseHosting\",\"https:\/\/x.com\/rosehosting\",\"https:\/\/www.linkedin.com\/in\/rosehosting\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/7ce77a842fa6a9a7f8efa186f2353713\",\"name\":\"Jeff Wilson\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/09271207587f897ab46faaed9b355252?s=96&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/09271207587f897ab46faaed9b355252?s=96&r=g\",\"caption\":\"Jeff Wilson\"},\"description\":\"An experienced Linux veteran with many years of experience. Helping other Linux admins with frequent Linux and business-related blog posts on the RoseHosting blog. Techie by choice. Loving nature and travel. Happily married and father of two lovely children.\",\"sameAs\":[\"https:\/\/www.rosehosting.com\",\"https:\/\/www.facebook.com\/rosehosting.helpdesk\"],\"url\":\"https:\/\/www.rosehosting.com\/blog\/author\/jwilson\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux - RoseHosting","description":"Don't let your websites get overwhelmed by HTTP\/2 Rapid Reset. Read our simple guide on how to protect your web server from attacks.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/","og_locale":"en_US","og_type":"article","og_title":"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux - RoseHosting","og_description":"Don't let your websites get overwhelmed by HTTP\/2 Rapid Reset. Read our simple guide on how to protect your web server from attacks.","og_url":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/","og_site_name":"RoseHosting","article_publisher":"https:\/\/www.facebook.com\/RoseHosting","article_author":"https:\/\/www.facebook.com\/rosehosting.helpdesk","article_published_time":"2023-10-18T16:23:42+00:00","article_modified_time":"2023-10-18T16:30:18+00:00","og_image":[{"width":1024,"height":576,"url":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg","type":"image\/jpeg"}],"author":"Jeff Wilson","twitter_card":"summary_large_image","twitter_creator":"@rosehosting","twitter_site":"@rosehosting","twitter_misc":{"Written by":"Jeff Wilson","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#article","isPartOf":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/"},"author":{"name":"Jeff Wilson","@id":"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/7ce77a842fa6a9a7f8efa186f2353713"},"headline":"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux","datePublished":"2023-10-18T16:23:42+00:00","dateModified":"2023-10-18T16:30:18+00:00","mainEntityOfPage":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/"},"wordCount":849,"commentCount":0,"publisher":{"@id":"https:\/\/www.rosehosting.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#primaryimage"},"thumbnailUrl":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg","keywords":["apache","Linux","nginx","vulnerability"],"articleSection":["Linux","Networking and Domains","Tutorials"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/","url":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/","name":"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux - RoseHosting","isPartOf":{"@id":"https:\/\/www.rosehosting.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#primaryimage"},"image":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#primaryimage"},"thumbnailUrl":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg","datePublished":"2023-10-18T16:23:42+00:00","dateModified":"2023-10-18T16:30:18+00:00","description":"Don't let your websites get overwhelmed by HTTP\/2 Rapid Reset. Read our simple guide on how to protect your web server from attacks.","breadcrumb":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#primaryimage","url":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg","contentUrl":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2023\/10\/how-to-fix-http2-rapid-reset-cve-2023-44487-on-linux.jpg","width":1024,"height":576,"caption":"how to fix http2 rapid reset cve-2023-44487 on linux"},{"@type":"BreadcrumbList","@id":"https:\/\/www.rosehosting.com\/blog\/how-to-fix-http-2-rapid-reset-cve-2023-44487-on-linux\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.rosehosting.com\/blog\/"},{"@type":"ListItem","position":2,"name":"How to Fix HTTP\/2 Rapid Reset CVE-2023-44487 on Linux"}]},{"@type":"WebSite","@id":"https:\/\/www.rosehosting.com\/blog\/#website","url":"https:\/\/www.rosehosting.com\/blog\/","name":"RoseHosting","description":"Premium Linux Tutorials Since 2001","publisher":{"@id":"https:\/\/www.rosehosting.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.rosehosting.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.rosehosting.com\/blog\/#organization","name":"RoseHosting","url":"https:\/\/www.rosehosting.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.rosehosting.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2022\/03\/android-chrome-192x192-1.png","contentUrl":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2022\/03\/android-chrome-192x192-1.png","width":192,"height":192,"caption":"RoseHosting"},"image":{"@id":"https:\/\/www.rosehosting.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/RoseHosting","https:\/\/x.com\/rosehosting","https:\/\/www.linkedin.com\/in\/rosehosting\/"]},{"@type":"Person","@id":"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/7ce77a842fa6a9a7f8efa186f2353713","name":"Jeff Wilson","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/09271207587f897ab46faaed9b355252?s=96&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/09271207587f897ab46faaed9b355252?s=96&r=g","caption":"Jeff Wilson"},"description":"An experienced Linux veteran with many years of experience. Helping other Linux admins with frequent Linux and business-related blog posts on the RoseHosting blog. Techie by choice. Loving nature and travel. Happily married and father of two lovely children.","sameAs":["https:\/\/www.rosehosting.com","https:\/\/www.facebook.com\/rosehosting.helpdesk"],"url":"https:\/\/www.rosehosting.com\/blog\/author\/jwilson\/"}]}},"_links":{"self":[{"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/posts\/47076"}],"collection":[{"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/comments?post=47076"}],"version-history":[{"count":11,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/posts\/47076\/revisions"}],"predecessor-version":[{"id":47140,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/posts\/47076\/revisions\/47140"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/media\/47136"}],"wp:attachment":[{"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/media?parent=47076"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/categories?post=47076"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/tags?post=47076"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}