So after fighting with many blog systems over the years and not being able to find an either fully secure or uncomplex to maintainable beast, I decided to move to something statically generated.
Nowadays, platforms like Disqus allow for JS-fetched inline comments. So there's no big problem if you want to have them, yet maintain your site static.
Editing these post in WYSIWIG is also possible thanks to live reStructuredText and markdown editors, so you don't need to imagine how your post will look like. Just write it, wait a second and see the result.
So all my needs are satisfied, rendering the stuff is done with nikola for no particular reason, just one seen every now and then on Planet Python.