KTLS doesn't work well with HTTP/2 because it needs framing around each chunk. If you have a typical 4k chunk size, it ends up doing a write followed by a 4k sendfile call repeatedly. It actually makes CPU overhead worse without using very large chunks. Works well for HTTP/1.1.

#ktls #http2 #sendfile

Our website was targeted with a Distributed Denial of Service attack using HTTP/2 multiplexing within the 2 minute window from 2023-02-09T00:58:00Z to 2023-02-09T01:00:00Z. OVH detected it and enabled mitigation but enough went through to cause downtime due to memory limits.

#grapheneos #ddos #http2 #nginx #ovh

Does anyone know of any studies or benchmarks comparing the #power / #energy use of #http2 vs #http3 / #quic ?

2015-10-31T13:50:57+00:00: RT @gitbisect: OH at #WebPerfDays: Port 80 is the new IE6. #HTTP2 #TLS

curious if #openbsd #httpd (and #relayd) have made progress on #http2

#chatgpt would need a little #http2 and #http3 education though, but you have to admire the confidence in this delivering of the wrong answer

#chatgpt would need a little #http2 and #http3 education though, but you have to admire the confidence in this delivering of the wrong answer

Just been reminded that I'm giving a short talk for our Security Champions in a couple of weeks on "HTTP/3 & QUIC From a Security Perspective".
Trying to focus on the security-specific changes vs h1 & h2.
I've got some slides prep'd but if anyone's got suggestions on what I should cover, please let me know (or more interesting titles, i'm so bad at naming things 🤣)
#http3 #http2 #web #infosec #security

Pasywny fingerprinting klienta HTTP/2 ( https://nfsec.pl/security/5978 ) #http2 #security #webbrowser #client #fingerprinting #twittermigration

Is #http2 #ServerPush dead or alive in practice?

- As early as Nov 2020 Google Chrome team guys issued an intent to remove...

- According to mini-survey on LinkedIn it was only used by 3% of top websites in 2020 (https://linkedin.com/pulse/why-do-only-3-top-1000-websites-use-http2-server-push-samir-jafferali/).

- I can't easily find any more recent numbers.

- And yet server push made it to #http3!

Is #http2 #server dead or alive in practice?

- As early as Nov 2020 Google Chrome team guys issued an intent to remove...

- According to mini-survey on LinkedIn it was only used by 3% of top websites in 2020 (https://linkedin.com/pulse/why-do-only-3-top-1000-websites-use-http2-server-push-samir-jafferali/).

- I can't easily find any more recent numbers.

- And yet server push made it to #http3!

How to Build a Low-tech Website, by Kris De Decker @rra

In a nut shell:
* Solar PV panel.
* Low-power Linux box (Olimex, like a Rasberry Pi but reportedly faster, more compat with regular Linux, fully open-source at hardware level, yet need less energy).
* Nginx for TLS and #http2.
* Statically deployed from a CMS.

Original article: https://solar.lowtechmagazine.com/2018/09/how-to-build-a-lowtech-website/

Follow-up 2020 piece:
https://solar.lowtechmagazine.com/2020/01/how-sustainable-is-a-solar-powered-website.html

More about the hardware:
https://homebrewserver.club/low-tech-website-howto.html#server
https://olimex.wordpress.com/2014/10/23/olinuxino-and-raspberry-pi-compare/

#lowtechmagazine

Google Chrome 51 vs HTTP/2 na Linuksie ( https://nfsec.pl/root/5849 ) #google #chrome #http2 #openssl #linux #twittermigration

I wrote about how Wikipedia's HTTP/2 and SPDY deployed to its CDN and the regressions, benefits, and lessons we learned around paint time and load time metrics.

It took place back in 2016, but the topic came up recently and the caveats esp at scale are still somewhat unknown. Enjoy!

https://techblog.wikimedia.org/2022/11/04/http-2-performance-revisited/

#webperf #http2 #spdy #http3 #cdn #NetOps

Dust covered button labeled Push
Removing HTTP/2 Server Push from Chrome https://developer.chrome.com/blog/removing-push/ #chrome #HTTP2 #server #push

Paris Web - HTTP/3, ce n'est pas seulement HTTP/2 avec un numéro plus grand

https://www.paris-web.fr/2021/conferences/http3-ce-nest-pas-seulement-http2-avec-un-numero-plus-grand.php

#HTTP3 #QUIC #HTTP2 #HTTP #Web #Internet #Protocoles #Normalisation

RT @alexsoyes
Une conf super intéressante de @dunglas sur #http2, le preload, #vulcain, le fonctionnement de #phpcgi, le server push, le code 103...

À regarder pour les devs web 👇

https://www.youtube.com/watch?v=tykjaaRU-6Y

Today at $DAYJOB I got to analyse why a #golang #http2 client would throw an error when talking to our own HTTP/2 server stack.

Turned out it was a bug in go (already fixed upstream but not in the version this client was compiled with), but understanding it helped us work around it server-side.

Things were complicated somewhat by the fact that this is all over HTTPS - https://github.com/VerSprite/alpnpass #alpnpass was a great help so I could inspect the frames in #wireshark!

Much enjoyed this!

Hop, je suis à jour des protocoles de 2015 sur mon blog 🙂

#HTTP2

RT @eliasjpr@twitter.com

Duo - An HTTP2 Server Written in Crystal Language
#crystallang #http2
https://github.com/azutoolkit/duo/

🐦🔗: https://twitter.com/eliasjpr/status/1386760951202988038