MS Exchange 2010 Edge Transport Server STIG
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Exch-2-333
<GroupDescription></GroupDescription>Group -
Messages with malformed from address must be rejected.
<VulnDiscussion>Sender Identification (SID) is an email anti-spam sanitization process. Sender ID uses DNS MX record lookups to verify the S...Rule Medium Severity -
Exch-2-019
<GroupDescription></GroupDescription>Group -
Local machine policy must require signed scripts.
<VulnDiscussion>Scripts often provide a way for attackers to infiltrate a system, especially those downloaded from untrusted locations. By ...Rule Medium Severity -
Exch-2-330
<GroupDescription></GroupDescription>Group -
Block list service provider must be identified.
<VulnDiscussion>Block List filtering is a sanitization process performed on email messages prior to their arrival at the destination mailbox....Rule Medium Severity -
Exch-2-200
<GroupDescription></GroupDescription>Group -
SMTP automated banner response must not reveal server details.
<VulnDiscussion>Automated connection responses occur as a result of FTP or Telnet connections, when connecting to those services. They report...Rule Medium Severity -
Exch-2-201
<GroupDescription></GroupDescription>Group -
Outbound Connection Limit per Domain Count must be controlled.
<VulnDiscussion>Email system availability depends in part on best practices strategies for setting tuning configurations. This configuration ...Rule Low Severity -
Exch-2-327
<GroupDescription></GroupDescription>Group -
SPAM evaluation filter must be enabled.
<VulnDiscussion>By performing filtering at the perimeter, up to 90% of SPAM, malware, and other undesirable messages may be eliminated from t...Rule Medium Severity -
Exch-2-302
<GroupDescription></GroupDescription>Group -
Filtered messages must be archived.
<VulnDiscussion>By performing filtering at the perimeter, up to 90% of SPAM, malware, and other undesirable messages are eliminated from the ...Rule Medium Severity -
Attachment filtering must remove undesirable attachments by file type.
<VulnDiscussion>By performing filtering at the perimeter, up to 90 percent of spam, malware, and other undesirable messages are eliminated fr...Rule Medium Severity -
Exch-2-324
<GroupDescription></GroupDescription>Group -
Sender reputation filter must identify SPAM block level.
<VulnDiscussion>By performing filtering at the perimeter, up to 90% of SPAM, malware, and other undesirable messages are eliminated from the ...Rule Medium Severity -
Exch-2-321
<GroupDescription></GroupDescription>Group -
Sender reputation filter must be enabled.
<VulnDiscussion>By performing filtering at the perimeter, up to 90% of SPAM, malware, and other undesirable messages are eliminated from the ...Rule Medium Severity -
Exch-2-305
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.