Opened 9 years ago
Closed 7 years ago
#10836 closed Other (duplicate)
Error message - The first key-exchange algorithm supported by the server is diffie-hellman-group1-sha1, which is no longer secure. Aborting connection.
| Reported by: | Kwame | Owned by: | |
|---|---|---|---|
| Priority: | normal | Component: | Other |
| Keywords: | Key Exchange Algorithm | Cc: | k.mensah@… |
| Component version: | Operating system type: | Windows | |
| Operating system version: |
Description
Dear Filezilla
I have recently upgraded to Filezilla version 3.17.0.1 and now cannot connect to our FTP file server.
According to your site this error message means that the ftp/ sftp server needs to be upgraded to support a more secure key exchange algorithm.
The server is a Windows 2003 server. Would upgrading to either 2008 or 2012 rectify the problem? Or is there a Windows patch you are aware of?
We have an SSH Tectia server installed for SFTP; will this need to be upgraded also?
Many thanks for your help.
Kwame Mensah
Change History (2)
comment:1 by , 7 years ago
comment:2 by , 7 years ago
| Resolution: | → duplicate |
|---|---|
| Status: | new → closed |
Note:
See TracTickets
for help on using tickets.
Triage suggestion
This was discussed in ticket #10825 -- it appears that users must upgrade their FTP servers to mitigate vulnerabilities or downgrade their clients to continue using insecure algorithms.
I suggest closing this ticket as "wontfix".
@K.Mensah, it is possible that you could use FileZilla Server on your Windows server to resolve this problem. I am unfamiliar with what options are available with newer Windows versions or Windows patches. Unfortunately I am unable to recommend a specific path forward.