Is it safe to use HTTP/3? (0-RTT)

matt · August 24, 2023, 2:24am

Welcome Lucas! Good question.

This issue has the most recent discussion about this, as of last week, including Marten’s opinion (the author of our HTTP/3 lib):

github.com/caddyserver/caddy

TLS 1.3 0-RTT Enabled by default

opened 10:05AM - 16 Aug 23 UTC

closed 02:49PM - 16 Aug 23 UTC

mgaller

question

upstream

Release 2.7.3 highlights - Significant HTTP/3 performance improvements (upst…ream in quic-go) **including enabling 0-RTT**. Caddy users should notice significantly better throughput for HTTP/3. Thanks for the fantastic work, @marten-seemann! Is this really the case that 0-RTT is default on ? There are some security concerns on the internet and most advise not to turn this on. If this is really on, this should at least be deactivatable.

If there is a vulnerability there, it is orthogonal to the web server and likely more of an application concern. (Replay attacks are not unique to 0-RTT.)