Skip to content
Log In

MS Exchange 2010 Edge Transport Server STIG

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Exch-3-807

    Group
    Show

  • Exch-2-014

    Group
    Show

  • Servers must use approved DoD certificates.

    Server certificates are required for many security features in Exchange; without them the server cannot engage in many forms of secure communication. Failure to implement valid certificates makes ...
    Rule Medium Severity
    Show

  • Exch-2-015

    Group
    Show

  • Exch-3-814

    Group
    Show

  • The current, approved service pack must be installed.

    Failure to install the most current Exchange service pack leaves a system vulnerable to exploitation. Current service packs correct known security and system vulnerabilities.
    Rule Medium Severity
    Show

  • Exch-2-333

    Group
    Show

  • Messages with malformed from address must be rejected.

    Sender Identification (SID) is an email anti-spam sanitization process. Sender ID uses DNS MX record lookups to verify the SMTP sending server is authorized to send email for the originating domai...
    Rule Medium Severity
    Show

  • Exch-2-019

    Group
    Show

  • Local machine policy must require signed scripts.

    Scripts often provide a way for attackers to infiltrate a system, especially those downloaded from untrusted locations. By setting machine policy to prevent unauthorized script executions, unanti...
    Rule Medium Severity
    Show

  • Exch-2-330

    Group
    Show

  • Exch-2-200

    Group
    Show

  • SMTP automated banner response must not reveal server details.

    Automated connection responses occur as a result of FTP or Telnet connections, when connecting to those services. They report a successful connection by greeting the connecting client, stating the ...
    Rule Medium Severity
    Show

  • Exch-2-201

    Group
    Show

  • Outbound Connection Limit per Domain Count must be controlled.

    Email system availability depends in part on best practices strategies for setting tuning configurations. This configuration controls the maximum number of simultaneous outbound connections from a ...
    Rule Low Severity
    Show

  • Exch-2-327

    Group
    Show

  • SPAM evaluation filter must be enabled.

    By performing filtering at the perimeter, up to 90% of SPAM, malware, and other undesirable messages may be eliminated from the transport message stream, preventing their entry into the Exchange en...
    Rule Medium Severity
    Show

  • Exch-2-302

    Group
    Show

  • Filtered messages must be archived.

    By performing filtering at the perimeter, up to 90% of SPAM, malware, and other undesirable messages are eliminated from the message stream rather than admitting them into the mail server environme...
    Rule Medium Severity
    Show

  • Exch-2-324

    Group
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules