kali安装后metasploit-framework在每次apt update时自动更新
创建msfupdate文件,需要把https://raw.githubusercontent.com/rapid7/metasploit-omnibus/master/config/templates/metasploit-framework-wrappers/msfupdate.erb
文件内容自动拷贝进来执行
sudo chmod 755 msfupdate
sudo ./msfupdate
或者用
curl https://raw.githubusercontent.com/rapid7/metasploit-omnibus/master/config/templates/metasploit-framework-wrappers/msfupdate.erb > msfinstall && \
sudo chmod 755 msfupdate && \
sudo ./msfupdate
再次apt update,发现metasploit-framework密钥过时
sudo apt update
命中:1 http://downloads.metasploit.com/data/releases/metasploit-framework/apt lucid InRelease
命中:2 https://mirrors.ustc.edu.cn/kali kali-rolling InRelease
正在读取软件包列表... 完成
正在分析软件包的依赖关系树... 完成
正在读取状态信息... 完成
所有软件包均为最新。
W: http://downloads.metasploit.com/data/releases/metasploit-framework/apt/dists/lucid/InRelease: 密钥存储在过时的 trusted.gpg 密钥环中(/etc/apt/trusted.gpg),请参见 apt-key(8) 的 DEPRECATION 一节以了解详情。
需要删除过时密钥
1、 找出keyring的fingerprint
sudo apt-key list
Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d instead (see apt-key(8)).
/etc/apt/trusted.gpg
--------------------
pub rsa4096 2012-12-06 [SC] [有效至:2029-09-02]
09E5 5FAF 4F78 62CD 6D55 8997 CDFB 5FA5 2007 B954
uid [ 未知 ] Metasploit <metasploit@rapid7.com>
sub rsa4096 2012-12-06 [E] [有效至:2029-09-02]
……
2、导出keyring至/etc/apt/trusted.gpg.d/metasploit-framework.gpg
sudo apt-key export 2007B954 | sudo gpg --dearmour -o /etc/apt/trusted.gpg.d/metasploit-framework.gpg
Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d instead (see apt-key(8)).
3、删除/etc/apt/trusted.gpg中的keyring
sudo apt-key --keyring /etc/apt/trusted.gpg del 2007B954
Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d instead (see apt-key(8)).
OK
再次apt update
sudo apt update
命中:1 http://downloads.metasploit.com/data/releases/metasploit-framework/apt lucid InRelease
命中:2 https://mirrors.ustc.edu.cn/kali kali-rolling InRelease
正在读取软件包列表... 完成
正在分析软件包的依赖关系树... 完成
正在读取状态信息... 完成
所有软件包均为最新。
问题解决
参考https://blog.csdn.net/jiang_huixin/article/details/127186567