STIGQter: STIG Summary: Exchange 2010 Mailbox Server STIG Version: 1 Release: 10 Benchmark Date: 28 Jul 2017:

Mail quota settings must not restrict receiving mail.

DISA Rule

SV-44011r2_rule

Vulnerability Number

V-33591

Group Title

Exch-1-301

Rule Version

Exch-1-301

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Open the Exchange Management Shell and enter the following command:

Set-MailboxDatabase <'MailboxDatabaseName'> -ProhibitSendReceiveQuota 'Unlimited'

If an alternate value is desired from ProhibitSendReceiveQuota, obtain signoff with risk acceptance and document in the EDSP.

Check Contents

Open the Exchange Management Shell and enter the following command:

Get-MailboxDatabase | Select Name, Identity, ProhibitSendReceiveQuota

If the value of 'ProhibitSendReceiveQuota' is set to an alternate value, and has signoff and risk acceptance in the EDSP, this is not a finding.

If the value of 'ProhibitSendReceiveQuota' is not set to 'Unlimited', this is a finding.

Vulnerability Number

V-33591

Documentable

False

Rule Version

Exch-1-301

Severity Override Guidance

Open the Exchange Management Shell and enter the following command:

Get-MailboxDatabase | Select Name, Identity, ProhibitSendReceiveQuota

If the value of 'ProhibitSendReceiveQuota' is set to an alternate value, and has signoff and risk acceptance in the EDSP, this is not a finding.

If the value of 'ProhibitSendReceiveQuota' is not set to 'Unlimited', this is a finding.

Check Content Reference

M

Target Key

1995

Comments