[193163] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post
Re: [Tier1 ISP]: Vulnerable to a new DDoS amplification attack

daemon@ATHENA.MIT.EDU (j.j.santanna@utwente.nl)
Thu Dec 22 08:46:44 2016

X-Original-To: nanog@nanog.org
From: <j.j.santanna@utwente.nl>
To: <jean@ddostest.me>
Date: Thu, 22 Dec 2016 11:01:23 +0000
In-Reply-To: <692a6db8-18aa-83c2-f6b4-e7660b054f49@ddostest.me>
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
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home	help	back	first	fref	pref	prev	next	nref	lref	last	post
[193163] in North American Network Operators' Group

Re: [Tier1 ISP]: Vulnerable to a new DDoS amplification attack

daemon@ATHENA.MIT.EDU (j.j.santanna@utwente.nl)Thu Dec 22 08:46:44 2016

daemon@ATHENA.MIT.EDU (j.j.santanna@utwente.nl)
Thu Dec 22 08:46:44 2016
