https://wirez.top/tags/maxlength/Recent content in Maxlength on WirezHugoenSun, 01 Mar 2026 00:00:00 +0000https://wirez.top/posts/validation-errors-break-blackhole-routes-now/Sun, 01 Mar 2026 00:00:00 +0000https://wirez.top/posts/validation-errors-break-blackhole-routes-now/<meta charset="utf-8"> <!-- wp:paragraph {"className":"std-text"} --> <!-- /wp:paragraph --> <!-- wp:paragraph {"className":"std-text"} --> <p class="std-text">Bryton Herdes warns that relaxing <strong>maxLength protections</strong> for blackhole routes creates a direct path for BGP hijacks.</p> <!-- /wp:paragraph --> <!-- wp:paragraph {"className":"std-text"} --> <p class="std-text">The central thesis is that networks must strictly pair <strong>originAS-only validation</strong> with the mandatory presence of the <strong>BLACKHOLE community</strong> to prevent security degradation. While the global network security market races toward USD 205.98 billion by 2031, basic BGP hygiene remains fragile without these specific constraints. Herdes, a Principal Network Engineer at Cloudflare, argues that vendors offering shortcut configurations for loose validation directly undermine RFC9319 standards. <a href="https://blog.cloudflare.com/rpki-2020-fall-update/" target="_blank" rel="noopener noreferrer">Cloudflare&#039;s rpki 2020 fall update</a></p>