It's simply not possible for the server to distinguish between real and malicious rendezvous requests.