Package: x2goclient Version: 4.0.1.3-1 When establishing the connection to a server, x2goclient rely on diffie-hellman-group1-sha1 and hmac-sha1 as key exchange algorithm and message authentication code, respectively. Unfortunately, SHA1 can't be considered that safe: - https://www.schneier.com/blog/archives/2005/02/cryptanalysis_o.html - http://csrc.nist.gov/groups/ST/toolkit/secure_hashing.html As a consequence, the connection of x2goclient to an hardened SSH server (ie. not supporting SHA1) fails: kex error : did not find one of algos diffie-hellman-group1-sha1 in list ... kex error : did not find one of algos hmac-sha1 in list ... This problem could be solved: - either by using SHA2 KexAlgorithms and MACs in x2goclient - or by allowing users to choose between SHA1 or SHA2 hash functions