Back to articles
How to detect HTTP/2 abuse in Apache web server logs
Datadog | The Monitor blog

How to detect HTTP/2 abuse in Apache web server logs

9 views

Summary

This article explains how to detect HTTP/2-based vulnerabilities in Apache HTTP Server, such as CVE-2026-23918, which can lead to server crashes or remote code execution. Because these attacks occur at the stream level and are invisible in standard access logs, the author recommends enabling `LogLevel http2:debug` to identify malicious patterns like high-volume stream resets and segmentation faults.
Read the Original Article

This article originally appeared on Datadog | The Monitor blog.

Read Full Article on Original Site

Popular from Datadog | The Monitor blog

1
Datadog LLM Observability natively supports OpenTelemetry GenAI Semantic Conventions
Datadog LLM Observability natively supports OpenTelemetry GenAI Semantic Conventions

Datadog | The Monitor blog Dec 1, 2025 95 views

2
Introducing Bits AI Dev Agent for Code Security
Introducing Bits AI Dev Agent for Code Security

Datadog | The Monitor blog Mar 26, 2026 77 views

3
Monitoring MongoDB performance metrics (MMAP)
Monitoring MongoDB performance metrics (MMAP)

Datadog | The Monitor blog May 25, 2016 70 views

4
Understand session replays faster with AI summaries and smart chapters
Understand session replays faster with AI summaries and smart chapters

Datadog | The Monitor blog Apr 2, 2026 69 views

5
Introducing ARFBench: A time series question-answering benchmark based on real incidents
Introducing ARFBench: A time series question-answering benchmark based on real incidents

Datadog | The Monitor blog Apr 24, 2026 65 views