My esteemed friend Dr. Rich Boakes has noticed some odd behaviour in his Apache logs that turned out to be people abusing his OpenID server to make page requests to remote sites, presumably as a way of increasing clicks. He raises an interesting point as to whether this makes OpenID servers potential DDoS amplifiers (I suspect he’s right).
Props where they’re due… I was thinking primarily about proxying of a DDOS attack, the threat of amplification was spotted by you as I described the scenario.
Just goes to prove I have no memory.. 😉