kali更新杂事

今天打开kali,用到msf的时候，需要更新一下msf和payload库，结果给我整这么一出

图片.png

我用的是官方源按理说不应该出现这种问题，可是添加到 /etc/apt/source.list之后，执行apt-update就会出现上面的错误提示 ，醉了，这个问题恶心了我一上午，在多方搜索无果之后，我决定静下心来(被迫无奈)阅读一下kali中提供的文档

man 8 apt-secure

UNSIGNED REPOSITORIES
       If an archive has an unsigned Release file or no Release file at all
       current APT versions will refuse to download data from them by default
       in update operations and even if forced to download front-ends like
       apt-get(8) will require explicit confirmation if an installation
       request includes a package from such an unauthenticated archive.

       You can force all APT clients to raise only warnings by setting the
       configuration option Acquire::AllowInsecureRepositories to true.
       Individual repositories can also be allowed to be insecure via the
       sources.list(5) option allow-insecure=yes. Note that insecure
       repositories are strongly discouraged and all options to force apt to
       continue supporting them will eventually be removed. Users also have
       the Trusted option available to disable even the warnings, but be sure
       to understand the implications as detailed in sources.list(5). 

解决问题的关键，虽然国内的源没有签名，或者签名过期（失效），但是我们可以强制apt进行更新，忽略仓库的安全性，而想要达到这个目的，我们就需要对APT的配置文件进行修改
修改

/etc/apt/apt.conf.d/70debconf
在文件内容内添加
Acquire::AllowInsecureRepositories true;

执行apt-config dump，查看apt的对应配置有无生效

图片.png

然后正常用就可以