Filezilla and other SFTP clients unable to connect due to server only supporting diffie-hellman-group1-sha1 key exchange algorithm
Posted by John Villanueva, Last modified by John Villanueva on 27 June 2017 06:52 PM
The latest version of FileZilla will have problems connecting to the SFTP service running on older versions of JSCAPE MFT Server. This is usually caused by the only key exchange algorithm supported by older versions of JSCAPE MFT Server - diffie-hellman-group1-sha1. Later versions of FileZilla (and perhaps other SFTP clients) no longer support it.
In FileZilla, you'll get the following message:
Error: The first key-exchange algorithm supported by the server is diffie-hellman-group1-sha1, which is no longer secure. Aborting connection.
To remedy this problem, you can either use older versions of SFTP clients or (HIGHLY RECOMMENDED) upgrade to the latest version of JSCAPE MFT Server, which already supports the following key exchange algorithms:
Note that old versions of MFT Server (prior to 9.1) have broken diffie-hellman-group-exchange-sha256 and diffie-hellman-group-exchange-sha1 key exchange algorithms
You may download the latest version of JSCAPE MFT Server from here: