Exchange must have anti-spam filtering enabled.
An XCCDF Rule
Description
<VulnDiscussion>Originators of spam messages are constantly changing their techniques to defeat spam countermeasures; therefore, spam software must be constantly updated to address the changing threat. Spam protection mechanisms include, for example, signature definitions, rule sets, and algorithms. Exchange 2019 provides both anti-spam and anti-malware protection out of the box. The Exchange 2019 anti-spam and anti-malware product capabilities are limited but still provide some protection.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-259627r961161_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Open the Exchange Management Shell and enter the following command for any values that were not set to True:
Set-ContentFilterConfig -Enabled $true
Set-SenderFilterConfig -Enabled $true