Remove hmac-ripemd160 which was removed in OpenSSH 7.6.
Note the removal of arcfour, blowfish, and CAST in 7.6.
Add the new Diffie-Hellman key exchange algorithms from 7.3.
Fix the dead Google Authenticator link with its news location on GitHub.
I wasn't sure if you would want me to actually remove arcfour/blowfish/cast from the cipher list instead of just noting their removal in the most recent version. I'm happy to revise it if you do. You're welcome to cherry-pick or merge that from cbdf0e3cba2d0dad501bc6f1f23d46da94f9c866 if you'd like.
I also wasn't sure if you'd want to update the recommended snippet with any of the new DH groups. Based on this draft it sounds like group14-sha256 is a good choice and the other two are likely overkill currently. OpenSSH 7.3 has been out for more than a year, but I do know some people run ancient software. You're also welcome to grab those more opinionated changes from 1c6f78961d8cb9450a1ba7864dec58ec660b651b.
I wasn't sure if you would want me to actually remove arcfour/blowfish/cast from the cipher list instead of just noting their removal in the most recent version. I'm happy to revise it if you do. You're welcome to cherry-pick or merge that from cbdf0e3cba2d0dad501bc6f1f23d46da94f9c866 if you'd like.
I also wasn't sure if you'd want to update the recommended snippet with any of the new DH groups. Based on this draft it sounds like group14-sha256 is a good choice and the other two are likely overkill currently. OpenSSH 7.3 has been out for more than a year, but I do know some people run ancient software. You're also welcome to grab those more opinionated changes from 1c6f78961d8cb9450a1ba7864dec58ec660b651b.