Autor: @txambe
Después de actualizar Kali Linux a la última versión cuando ejecute un apt-get update me
daba el error de GPG :
“ GPG error:
http://http.kali.org /kali Release: The following signatures couldn't be
verified because the public key is not available “
root@kali:~# aptitude update
Hit http://dl.google.com stable Release.gpg
Hit http://dl.google.com stable Release
Hit http://dl.google.com stable/main amd64 Packages
Des: 1 http://repo.kali.org kali-bleeding-edge Release.gpg [819 B]
Des: 2 http://repo.kali.org kali-bleeding-edge Release [11,0 kB]
Err http://repo.kali.org kali-bleeding-edge Release
Ign http://dl.google.com stable/main Translation-es_SV
Ign http://dl.google.com stable/main Translation-es
Ign http://dl.google.com stable/main Translation-en
Des: 3 http://security.kali.org kali/updates Release.gpg [819 B]
Des: 4 http://http.kali.org kali Release.gpg [819 B]
Des: 5 http://security.kali.org kali/updates Release [11,0 kB]
Err http://security.kali.org kali/updates Release
Des: 6 http://http.kali.org kali Release [21,1 kB]
Err http://http.kali.org kali Release
Descargados 23,6 kB en 3seg. (7.332 B/s)
W: Se produjo un error durante la verificación de las firmas. El repositorio no está actualizado y se utilizarán los ficheros de índice antiguos. El error GPG es: http://repo.kali.org kali-bleeding-edge Release: Las siguientes firms fueron inválidas: KEYEXPIRED 1425567400 KEYEXPIRED 1425567400 KEYEXPIRED 1425567400
W: Se produjo un error durante la verificación de las firmas. El repositorio no está actualizado y se utilizarán los ficheros de índice antiguos. El error GPG es: http://security.kali.org kali/updates Release: Las siguientes firms fueron inválidas: KEYEXPIRED 1425567400 KEYEXPIRED 1425567400 KEYEXPIRED 1425567400
W: Se produjo un error durante la verificación de las firmas. El repositorio no está actualizado y se utilizarán los ficheros de índice antiguos. El error GPG es: http://http.kali.org kali Release: Las siguientes firms fueron inválidas: KEYEXPIRED 1425567400 KEYEXPIRED 1425567400 KEYEXPIRED 1425567400
W: Se produjo un fallo al descargar http://repo.kali.org/kali/dists/kali-bleeding-edge/Release:
W: Se produjo un fallo al descargar http://security.kali.org/kali-security/dists/kali/updates/Release:
W: Se produjo un fallo al descargar http://http.kali.org/kali/dists/kali/Release:
W: Some index files failed to download. They have been ignored, or old ones used instead.
El problema tal como se muestra es que la llave pública GPG ha
caducado, así que tenemos que importar la llave nueva que firma y da validez a
los repositorios de Kali Linux.
Primero, debemos listar las claves de los repositorios que tenemos en
el llavero (key-ring) con el comando apt-key
list, por aquí el comando y su resultado:
root@kali:~# apt-key list
/etc/apt/trusted.gpg
--------------------
pub 1024D/7FAC5991 2007-03-08
uid Google, Inc. Linux Package Signing Key
sub 2048g/C07CB649 2007-03-08
/etc/apt/trusted.gpg.d//debian-archive-jessie-automatic.gpg
-----------------------------------------------------------
pub 4096R/2B90D010 2014-11-21 [caduca: 2022-11-19]
uid Debian Archive Automatic Signing Key (8/jessie)
/etc/apt/trusted.gpg.d//debian-archive-jessie-security-automatic.gpg
--------------------------------------------------------------------
pub 4096R/C857C906 2014-11-21 [caduca: 2022-11-19]
uid Debian Security Archive Automatic Signing Key (8/jessie)
/etc/apt/trusted.gpg.d//debian-archive-jessie-stable.gpg
--------------------------------------------------------
pub 4096R/518E17E1 2013-08-17 [caduca: 2021-08-15]
uid Jessie Stable Release Key
/etc/apt/trusted.gpg.d//debian-archive-squeeze-automatic.gpg
------------------------------------------------------------
pub 4096R/473041FA 2010-08-27 [caduca: 2018-03-05]
uid Debian Archive Automatic Signing Key (6.0/squeeze)
/etc/apt/trusted.gpg.d//debian-archive-squeeze-stable.gpg
---------------------------------------------------------
pub 4096R/B98321F9 2010-08-07 [caduca: 2017-08-05]
uid Squeeze Stable Release Key
/etc/apt/trusted.gpg.d//debian-archive-wheezy-automatic.gpg
-----------------------------------------------------------
pub 4096R/46925553 2012-04-27 [caduca: 2020-04-25]
uid Debian Archive Automatic Signing Key (7.0/wheezy)
/etc/apt/trusted.gpg.d//debian-archive-wheezy-stable.gpg
--------------------------------------------------------
pub 4096R/65FFB764 2012-05-08 [caduca: 2019-05-07]
uid Wheezy Stable Release Key
/etc/apt/trusted.gpg.d//kali-archive-keyring.gpg
------------------------------------------------
pub 4096R/7D8D0BF6 2012-03-05 [caducó: 2015-03-05]
uid Kali Linux Repository
Tal como se puede ver la fecha de caducidad, el uid de los repositorios de Kali Linux caducó el 5 de Marzo del año en curso 2015
Así que vamos a solucionar esto con el siguiente comando (más abajo el
comando con su resultado):
apt-key adv --keyserver hkp://keys.gnupg.net --recv-keys 7D8D0BF6
root@kali:~# apt-key adv --keyserver hkp://keys.gnupg.net --recv-keys 7D8D0BF6
Executing: gpg --ignore-time-conflict --no-options --no-default-keyring --secret-keyring /tmp/tmp.sYzbsBXbRo --trustdb-name /etc/apt//trustdb.gpg --keyring /etc/apt/trusted.gpg --primary-keyring /etc/apt/trusted.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-jessie-automatic.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-jessie-security-automatic.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-jessie-stable.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-squeeze-automatic.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-squeeze-stable.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-wheezy-automatic.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-wheezy-stable.gpg --keyring /etc/apt/trusted.gpg.d//kali-archive-keyring.gpg --keyserver hkp://keys.gnupg.net --recv-keys 7D8D0BF6
gpg: solicitando clave 7D8D0BF6 de hkp servidor keys.gnupg.net
gpg: clave 7D8D0BF6: "Kali Linux Repository"
32 firmas nuevas
gpg: no se encuentran claves absolutamente fiables
gpg: Cantidad total procesada: 1
gpg: nuevas firmas: 32
root@kali:~# apt-key list
apt-key adv --keyserver hkp://keys.gnupg.net --recv-keys 7D8D0BF6
root@kali:~# apt-key adv --keyserver hkp://keys.gnupg.net --recv-keys 7D8D0BF6
Executing: gpg --ignore-time-conflict --no-options --no-default-keyring --secret-keyring /tmp/tmp.sYzbsBXbRo --trustdb-name /etc/apt//trustdb.gpg --keyring /etc/apt/trusted.gpg --primary-keyring /etc/apt/trusted.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-jessie-automatic.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-jessie-security-automatic.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-jessie-stable.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-squeeze-automatic.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-squeeze-stable.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-wheezy-automatic.gpg --keyring /etc/apt/trusted.gpg.d//debian-archive-wheezy-stable.gpg --keyring /etc/apt/trusted.gpg.d//kali-archive-keyring.gpg --keyserver hkp://keys.gnupg.net --recv-keys 7D8D0BF6
gpg: solicitando clave 7D8D0BF6 de hkp servidor keys.gnupg.net
gpg: clave 7D8D0BF6: "Kali Linux Repository
gpg: no se encuentran claves absolutamente fiables
gpg: Cantidad total procesada: 1
gpg: nuevas firmas: 32
root@kali:~# apt-key list
/etc/apt/trusted.gpg
--------------------
pub 1024D/7FAC5991 2007-03-08
uid Google, Inc. Linux Package Signing Key
sub 2048g/C07CB649 2007-03-08
/etc/apt/trusted.gpg.d//debian-archive-jessie-automatic.gpg
-----------------------------------------------------------
pub 4096R/2B90D010 2014-11-21 [caduca: 2022-11-19]
uid Debian Archive Automatic Signing Key (8/jessie)
/etc/apt/trusted.gpg.d//debian-archive-jessie-security-automatic.gpg
--------------------------------------------------------------------
pub 4096R/C857C906 2014-11-21 [caduca: 2022-11-19]
uid Debian Security Archive Automatic Signing Key (8/jessie)
/etc/apt/trusted.gpg.d//debian-archive-jessie-stable.gpg
--------------------------------------------------------
pub 4096R/518E17E1 2013-08-17 [caduca: 2021-08-15]
uid Jessie Stable Release Key
/etc/apt/trusted.gpg.d//debian-archive-squeeze-automatic.gpg
------------------------------------------------------------
pub 4096R/473041FA 2010-08-27 [caduca: 2018-03-05]
uid Debian Archive Automatic Signing Key (6.0/squeeze)
/etc/apt/trusted.gpg.d//debian-archive-squeeze-stable.gpg
---------------------------------------------------------
pub 4096R/B98321F9 2010-08-07 [caduca: 2017-08-05]
uid Squeeze Stable Release Key
/etc/apt/trusted.gpg.d//debian-archive-wheezy-automatic.gpg
-----------------------------------------------------------
pub 4096R/46925553 2012-04-27 [caduca: 2020-04-25]
uid Debian Archive Automatic Signing Key (7.0/wheezy)
/etc/apt/trusted.gpg.d//debian-archive-wheezy-stable.gpg
--------------------------------------------------------
pub 4096R/65FFB764 2012-05-08 [caduca: 2019-05-07]
uid Wheezy Stable Release Key
/etc/apt/trusted.gpg.d//kali-archive-keyring.gpg
------------------------------------------------
pub 4096R/7D8D0BF6 2012-03-05 [caduca: 2018-02-02]
uid Kali Linux Repository
sub 4096R/FC0D0DCB 2012-03-05 [caduca: 2018-02-02]
Como se puede ver, el llavero de claves del repositorio de Kali ahora caducará hasta el 2 de Febrero de 2018
Despues de actualizar la clave, ya pude ejecutar apt-get update sin problemas y actualizar la versión de los paquetes con apt-get upgrade
Happy H@cking
No hay comentarios:
Publicar un comentario