A New Kali Linux Archive Signing Key
An Anonymous Coward writes:
The Kali Linux project has published an advisory, letting its users know of an upcoming problem with package management. "Bad news for Kali Linux users! In the coming day(s), apt update is going to fail for pretty much everyone out there:
Missing key 827C8569F2518CC677FECA1AED65462EC8D5E4C5, which is needed to verify signature.
Reason is, we had to roll a new signing key for the Kali repository. You need to download and install the new key manually, here's the one-liner:
sudo wget https://archive.kali.org/archive-keyring.gpg -O /usr/share/keyrings/kali-archive-keyring.gpg
Now your Kali is ready to keep rolling! Sorry for the inconvenience."
The advisory explains why this problem is happening: "This is not only you, this is for everyone, and this is entirely our fault. We lost access to the signing key of the repository, so we had to create a new one. At the same time, we froze the repository (you might have noticed that there was no update since Friday 18th), so nobody was impacted yet. But we're going to unfreeze the repository this week, and it's now signed with the new key. As a result, there's a bit of manual work for you."
Read more of this story at SoylentNews.