So, that means that GPG, SSL, and everything else is just as worthless, right?
Any of them can be self-signed, or even not signed. They still provide security, even without trust.
OpenID is not about trust. PERIOD.
"It's like building a trust network without trust". That's a completely empty statement, because trust isn't part of the issue! Surely you don't trust joeblow1854 who signed up for an account on the forum...
This is merely the decentralized exchange of identifiers/identities (if absorbing profile information) and that's it. There's nothing more to it.
What does a username and password get you that an OpenID doesn't? Oh right, a password. (And there's nothing wrong with that.)
OpenID allows you to have a single individual authenticated to your
website/service WITHOUT the need for an unnecessarily long signup step.
It doesn't do that? Ha! Go look at Jyte, go look at Zooomr, go look at LiveJournal. I can join/claim/comment/whatever at Jyte, I can have a gallery on Zooomr, and I can comment on LiveJournal; in one line, and one click (not counting the actual content, that comes after like every service).
And I can do it anywhere that an OpenID Consumer is implemented. ANYWHERE.
Are you telling me that everyone has done identity wrong? You haven't mentioned a better alternative, except "a new one". Sxip, Homesite, Passport (Live ID, whatever), i-names, and everyone? All trash and should be wiped from the web?
OpenID makes sense, and is perfect for blogs (and I'll get to the reason later. And WordPress works the way all other blogs do? Great! That means that WordPress will act like MoveableType and feature an OpenID consumer.
And on the other hand, WordPress works like every other blog does? Great!
That's absolutely boring and uninspiring.
However, a blog is rarely that sort of place.
Bull. Been to any WordPress powered news site lately?
Nearly every gaming blog I visit has multiple editors, and presumably multiple administrators too.
My point being that comments *should* be anonymous.
What on earth are you talking about? You honestly think that everyone would prefer to have their words be 'just part of the crowd'? Why do you think everyone and their mom has a blog? It's to have a name, to be something/somebody outside of their limited physical presence. (By that I mean physical reach is by FAR shorter than digital reach.)
It's to have (get ready for it)
a Digital Identity
And guess what OpenID is?
If you don't want it, don't use it. But considering you apparently don't use user management (besides yourself), don't rate it down. It's of no interest to you, fine. Just don't rate it down.
If you think it's wrong, then tell me why.
OpenID has purpose.
OpenID has implementation(s).
OpenID has (and is continuing to gain) adoption.
So why does it not do what we expect it to do?
I think both you, and I, are making the same mistake about each other.
One last question though, because I am really really confused...
If OpenID is technically unsound, stupid, and not solving any problems... why did you try using it?
Surely you would have read the spec, thought it wrong, and not bothered to install anything about it?
I really do get a vibe that you installed a consumer and expected a server. And if this argument is spawning from that alone... well, I don't know why we're arguing.
Answer me this (among everything else), why did you even bother installing the VerseLogic plugin?
Why are you now suddenly opposed to everything OpenID when you apparently wanted an OpenID server in the first place? (Which is something the VerseLogic plugin IS NOT.)
If you want an OpenID server, check out wordpress.com's faq on it ( http://wordpress.com/blog/2007/03/06/openid/ ) , if that satisfies your needs. Go vote up http://wordpress.org/extend/ideas/topic.php?id=500