Even though I’ve always thought that OpenID is a bad idea and subject to phishing attacks (though I don’t know this for certain), I went ahead and installed the OpenID plugin. But based on my Apache error logs, and terrified by the open sewer that is the Internet after fixing Laura‘s hacked blog, I’m taking the slightly safer route and deactivating OpenID. Which, as far as I know, nobody has ever actually used here.