About the recent update to commenting

  • Author
  • #848173


    Why oh why are you requiring people to log in to WordPress simply to use an e-mail address on a blog when that e-mail happens to be associated with a WordPress account? How does this help the blog owner or the commenter? It has cost a few days of troubleshooting thanks to a most uninformative error message.

    Now, in order to comment on a blog using an e-mail address that is also associated with a WordPress account, a commenter has to open WordPress.com, log in, go back to the blog and refresh the page, type the comment, and then click Post. Not conducive to spontaneous conversation…



    There are multiple threads on this issue aside from the [closed] sticky post Staff posted at the head of the forum. https://en.forums.wordpress.com/topic/recent-update-to-commenting?replies=2


    It’s to stop counterfeit commenting. It may have been implemented poorly, but it was needed. Previously, if I had timethief’s email address, I could pretend to be timethief. So now, if someone tries to comment with an email in the WP database, WP wants to make sure it’s legit. That’s all.



    I could visit other blogs, or maybe even your own blog, and just enter your email address (for many people this is easily discovered, often because they use the same one everywhere) when I post a comment. Then it would look like it came from you. Others would think it is you. The login requirement is “prove you are you”.

    Maybe you want to allow commentators to post anonymously to your blog. When (if) they get the (what I think is just a) bug fixed, that should work. In the mean time a workaround is to some innocuous word in the email field like “none”.

    But I do want them to not let you use any of MY email addresses.



    Still, it was implemented miserably. The solution is worse than the problem. Why does WordPress get to hijack Gravatar credentials? And the error message it gave was completely useless…The first one didn’t even mention wordpress…it just said you had to log in. To what?! Someone must have realized that was a miserable message because it got changed to include WordPress. But many of us were left wondering why we had to log into wordpress when the email address we were using had no affiliation with any wordpress accounts. Perhaps an error message including a link to where you needed to log in with at little note: Don’t have a WordPress account? Enter your Gravatar credentials. Why not put one of those tiny little icons for a gravatar log in?

    Many blogs have a moderation policy for first time posts, so using an alternate address with no gravatar wasn’t an option either.

    Really really bad implementation. You folks have access to a huge user community–you couldn’t ask folks for feed back? If you didn’t want any input, the least you could have done was warn blog owners that you were going to do something drastic. For over 24 hours, numerous blogging communities were completely in the dark, guessing at what the problem could be. What a waste of time.

    So much like FaceBook lately–implement something that messes up users and then claim you thought you were doing a good thing.



    I understand the need for greater security, but I have received several emails, as late as Sunday morning (3/17), where commenters are still having problems getting their comments to be accepted. Even those without WordPress.com accounts.





    Why does WordPress get to hijack Gravatar credentials?

    Gravatar like WordPress.com is owned by Automattic.




    Why not put a Gravatar icon in the login area next to the wordpress and twitter logins?

    Why not say in the error message that Gravatar users should use their Gravatar login?



    Volunteers had no role to play in the decision making process and we have no answers to “why?” questions. We have no information in addition to what other members have. We simply have more experiences and blogging skills than new bloggers do. We have all known since Firday when Staff posted the notice at the support link that they will not be available until Monday.

    Support will be closed over the weekend. We will reopen on Monday morning, March 19th.



    motre said:

    Maybe you want to allow commentators to post anonymously to your blog. When (if) they get the (what I think is just a) bug fixed, that should work. In the mean time a workaround is to some innocuous word in the email field like “none”.

    That bug seems to have been fixed (yay!). (Hopefully it doesn’t become unfixed again if they need to change something else.)

    Chris Rudzki left a brief announcement about the repair to the anonymous comment bug here:




    re: WordPress.com accounts and Gravatar accounts
    Please read this update from Staff:

    Key Master
    Mar 17, 2012, 10:48 PM
    WordPress.com and Gravatar.com accounts are the same thing. Accounts for each service work on the other. So if you’ve only ever used Gravatar, you can log into WordPress.com using your Gravatar account (and vice versa) to post using your registered email address. https://en.forums.wordpress.com/topic/recent-update-to-commenting?replies=4#post-843160


    Well I guess from now on I will post with no email address whatsoever. This latest move is frankly offensive.

    When are thickheaded webmasters going to understand that it’s not people’s names that count, but their ideas?!

    Have fun with your pseudo security, I’m leaving…


    By the way, thanks for shutting out comments on the ‘new and improved system’ (https://en.forums.wordpress.com/topic/recent-update-to-commenting?replies=2). Typical arrogance of people whose self importance trumps any legitimate user concerns.

    “If you don’t like it, leave!”

    Well that’s exactly what I’ll be doing.

The topic ‘About the recent update to commenting’ is closed to new replies.