OpenID server software needs to be able to detect when it is being used to proxy an attack on another server.