V-38612: The SSH daemon must not allow host-based authentication.
-----------------------------------------------------------------

SSH trust relationships mean a compromise on one host can allow an attacker to
move trivially to other hosts.

Details: `V-38612 in STIG Viewer`_.

.. _V-38612 in STIG Viewer: https://www.stigviewer.com/stig/red_hat_enterprise_linux_6/2015-05-26/finding/V-38612

Notes for deployers
~~~~~~~~~~~~~~~~~~~

.. include:: developer-notes/V-38612.rst