GPG Error Exercise 01, Chapter 2

Tagged: 

This topic contains 5 replies, has 2 voices, and was last updated by  androcodyex 2 months ago.

  • Author
    Posts
  • #17172

    Brandon
    Participant

    Hi,

    Hope you well.

    I have successfully downloaded the ISO.

    When I try to import the public key via the command:

    wget -q -O – https://www.kali.org/archive-key.asc | gpg –import

    I get:

    gpg:no valid OpenPGP data found

    gpg:Total number processed: 0

    Please advise

    Kind Regards,

  • #17194

    androcodyex
    Participant

    Hello Brandon, add two less symbols before the import and check if it works, greetings

  • #17225

    Brandon
    Participant

    Hi,

    Thank you that worked however now I have a different problem.

    I successfully import the fingerprint with:

    gpg –fingerprint 7D8D0BF6

    However on the following command:

    wget http://cdimage.kali.org/kali-2017.1/SHA256SUMS

    I obviously need to change my filename the full filename is:

    kali.linux-2019.1a-amd64.iso

    So I enter wget http://cdimage.kali.org/kali.linux-2019.1a/SHA256SUMS

    It connects to cdimage.kali.org however it gets a 404 awaiting response nothing found am I doing something wrong ?

    Thanks in advance

  • #17226

    androcodyex
    Participant

    Hi Brandon, try this wget http://cdimage.kali.org/kali-2019.1a/SHA256SUMS

  • #17229

    Brandon
    Participant

    Thank you that worked

    When I try and run shasum -a 1 ./kali-linux-2019.1a-amd64.iso
    49b1c5769b909220060dc4c0e11ae09d97a270a80d259e05773101df62e11e9d ./kali-linux-2019.1a-amd64.iso

    I get the output no such file or directory how come? I am trying to generate and compare hashes

    Note the original command per the book is

    shasum -a 256 ./kali-linux-2017.1-amd64.iso
    49b1c5769b909220060dc4c0e11ae09d97a270a80d259e05773101df62e11e9d ./kali-linux-2017.1-amd64.iso

  • #17231

    androcodyex
    Participant

    Hello Brandon, I recommend that the process of validation and checksum be done in any debian distro, you can also do it in windows, but you should check if the windows system complies with these tools.

    Once you have performed the previous steps successfully, you must make the sum of the iso that I download with the file SHA256SUMS, you must verify that both are equal, try this.

    if you are in a linux system, go to the directory where the iso files are located and the SHA256SUMS that you downloaded and enter:

    shasum -a 256 ./kali-linux-2019.1a-amd64.iso

    That gives you a hash, which you should compare with the hash of the file SHA256SUMS, enter:

    grep kali-linux-2019.1a-amd64.iso SHA256SUMS

    Finally, both hash must agree, in addition to this you can create a script in python to validate both hashes, both generated by the iso, as generated by the SHA256SUMS, in some cases I implement it that way, I hope and help you, Greetings

You must be logged in to reply to this topic.

Back to Top