III - Administrative Public
Rules and Groups employed by this XCCDF Profile
-
Exch-2-333
Group -
Messages with malformed from address must be rejected.
Sender Identification (SID) is an email anti-spam sanitization process. Sender ID uses DNS MX record lookups to verify the SMTP sending server is authorized to send email for the originating domai...Rule Medium Severity -
Exch-2-019
Group -
Local machine policy must require signed scripts.
Scripts often provide a way for attackers to infiltrate a system, especially those downloaded from untrusted locations. By setting machine policy to prevent unauthorized script executions, unanti...Rule Medium Severity -
Exch-2-330
Group -
Block list service provider must be identified.
Block List filtering is a sanitization process performed on email messages prior to their arrival at the destination mailbox. By performing this process at the email perimeter, threats can be elim...Rule Medium Severity -
Exch-2-200
Group -
SMTP automated banner response must not reveal server details.
Automated connection responses occur as a result of FTP or Telnet connections, when connecting to those services. They report a successful connection by greeting the connecting client, stating the ...Rule Medium Severity -
Exch-2-201
Group -
Outbound Connection Limit per Domain Count must be controlled.
Email system availability depends in part on best practices strategies for setting tuning configurations. This configuration controls the maximum number of simultaneous outbound connections from a ...Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules