Black Hats on OpenID

Just a couple of points on OpenID security – may be redundant to those who have already thought through this stuff.