On Mon, Feb 06, 2006 at 01:25:47 +0100, Jorgen Cederlof wrote:
The switch has happened now, which can be seen by the sudden increase in file size from 1.1 MiB to 1.3 MiB for the latest file at http://www.lysator.liu.se/~jc/wotsap/wots/ . Taking a closer look at the .wot files shows that the number of keys increased from 30801 to 34995 and the number of signatures from 289333 to 328855.
Unfortunately there has been a bug in the .wot generation which seems to have been there since the beginning. Henk P. Penning noticed that lots of signatures that were supposed to have expired were nevertheless included in the .wot. A bug in the way pks2wot.py parses the output of gpg when verifying signatures has now been fixed, and 2006-02-08.wot was created without the bug.
I don't know exactly how big impact the bug has had, but it seems like it is pretty small. Few signatures have a time limit, and only those with a time limit in the past are affected. Probably the biggest user of time limited signatures is the key "0xCA57AD7C PGP Global Directory Verification Key", and that key was previously completely excluded anyway, because of the key server bug. If that key is removed from both 2006-02-07.wot (with the bug) and 2006-02-08.wot (without the bug), the sizes of the strongly connected sets are 32467 and 31851. With that key included, the sizes are 35002 and 31942.
A new and improved directory structure is now available at http://www.lysator.liu.se/~jc/wotsap/wots2/ .
That directory structure is also available at http://www.rubin.ch/wotsap/ . It has been available there for some time, so some people might already be using it. Anyway, http://www.lysator.liu.se/~jc/wotsap/wots2/ and http://www.rubin.ch/wotsap/ are regularely synchronized from the same source using rsync so they should contain the same files, so if one goes down the other is probably available.
Jörgen