Hi.
Please can someone guide me. I am very new to Linux but what with lockdown I thought it was an ideal time to retrain.
I have downloaded the latest version of Kali and followed the verification instructions but I have a query.
The documentation says that the output should say something like :-
$ gpg --verify SHA256SUMS.gpg SHA256SUMS
gpg: Signature made Mon Sep 2 06:42:05 2019 EDT
gpg: using RSA key 44C6513A8E4FB3D30875F758ED444FF07D8D0BF6
gpg: Good signature from "Kali Linux Repository <[email protected]>" [full]
When I run the --verify SHA256SUMS.gpg SHA256SUMS, I get the following result:-
gpg: Signature made Wed 19 Aug 00:31:15 2020 AEST
gpg: using RSA key 44C6513A8E4FB3D30875F758ED444FF07D8D0BF6
gpg: Good signature from "Kali Linux Repository <[email protected]>" [unknown]
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: 44C6 513A 8E4F B3D3 0875 F758 ED44 4FF0 7D8D 0BF6
I am happy with the results up to and including gpg: Good signature from "Kali Linux Repository <[email protected]>" [unknown], but should I be worried about the warnings following that.
Thank you in advance for reading this and any help you can give if in fact the warning should be something for me to worry about.
I realise this might be a really basic question so thank you for helping a total newbie.
Kind Regards
Simon