Can we disable diffie-hellman-group14-sha1 by default?

Yegor Ievlev koops1997 at
Sun Jan 20 07:32:24 AEDT 2019

I'm not sure if collision resistance is required for DH key
derivation, but generally, SHA-1 is on its way out. If it's possible
(if there's not a very large percentage of servers that do not support
anything newer), it should be disabled.

More information about the openssh-unix-dev mailing list