Abusing OpenID for Phun and Profit

My esteemed friend Dr. Rich Boakes has noticed some odd behaviour in his Apache logs that turned out to be people abusing his OpenID server to make page requests to remote sites, presumably as a way of increasing clicks. He raises an interesting point as to whether this makes OpenID servers potential DDoS amplifiers (I suspect he’s right).

2 thoughts on “Abusing OpenID for Phun and Profit

Comments are closed.