I have not done any work on Wotsap in a very long time and the .wot updates stopped a while ago. I have accumulated a few minor code improvements since the last release so I just made a release of version 0.7. This will be the last release from me.
The key server that has been generating the .wot files that Wotsap uses is permanently down. The last is 2012-02-07.wot. A big thanks to Patrick Feisthammel who has been running the key server all these years!
In the past, some keys have been excluded because of bugs in the key server. The key server is now replaced and from 2006-02-04.wot all keys should be included.
In the process another bug was discovered, this time in the way pks2wot parses the output of gpg when verifying signatures. Signatures have been included even after their expiration date, but the problem seems to have been largely cancelled by the previous key server bug. From 2006-02-08.wot the bug, and therefore expired keys, is removed. More details are available in this mail.
From: Jorgen Cederlof <jc@lysator.liu.se> To: wotsap-announce@lists.lysator.liu.se, gnupg-users@gnupg.org, keyanalyze-discuss@dtype.org Subject: Announce: Wotsap 0.6 and Leaf of Trust analysis Hi, Version 0.6 of Web of trust statistics and pathfinder, Wotsap, is now running on and available from http://www.lysator.liu.se/~jc/wotsap/. In the development process I found some pretty image representations of the Web of Trust that might interest many readers of this mail. Take a look at http://www.lysator.liu.se/~jc/wotsap/leafoftrust.html for images and analysis. Some of the changes since last version: - The web pages have been given a well-needed face lift. - Much more documentation - Stabler and better search URLs. - News in HTML, Atom and RSS formats. - Mailing lists - All keys and signatures are now verified with GnuPG. - The primary user ID is now always used. - Indication of signature cert check level and whether the primary user ID was signed. - New .wot file format including signature types. - Key statistics can show the signatures that would lower MSD most (by Marco Bodrato) - Group matrices - show all signatures within a group of keys. - Option to dynamically add signatures, exclude signatures, signature types, non-cross-signatures and keys for the duration of a query. Stand-alone program only: - Better command line handling. - Show a whole .wot file in human-readable format. - Show all differences between two .wot files. - Everything now works without warnings in Python 2.3, should work fine in Python 2.4 and has compatibility for Python 2.2. Thanks for all the encouragement and ideas I received from lots of people during this development cycle. Jörgen Cederlöf
IV. SECURITYFOCUS TOP 6 TOOLS ----------------------------- 1. Web of Trust Statistics and Pathfinder v0.5 by Jörgen Cederlöf Relevant URL: http://www.lysator.liu.se/~jc/wotsap/ Platforms: Python Summary: Web of Trust Statistics and Pathfinder (Wotsap) is a program for graphing all the shortest paths between two keys in the OpenPGP Web of Trust. These paths can be presented as text or as PNG images. Additionally, it can generate statistics about keys and the whole strongly-connected set.