STIGQter: STIG Summary: MS Exchange 2010 Edge Transport Server STIG Version: 1 Release: 15 Benchmark Date: 26 Apr 2019:

Sender Filter must block accepted domains at the edge.

DISA Rule

SV-44061r1_rule

Vulnerability Number

V-33641

Group Title

Exch-2-317

Rule Version

Exch-2-317

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Open the Exchange Management Shell and enter the following command:

Set-SenderFilterConfig -BlockedDomains <domain list>
Or
Set-SenderFilterConfig -BlockedDomainsAndSubdomains <domain list>

Enter the list of accepted domains for this email system.
Document the configuration in the EDSP.

Check Contents

Access the EDSP for the list of accepted domains for which this server accepts inbound email.

Open the Exchange Management Shell and enter the following command:

Get-SenderFilterConfig

If the value for 'BlockedDomains' or 'BlockedDomainsAndSubdomains' does not reflect the list of accepted domains, this is a finding.

Vulnerability Number

V-33641

Documentable

False

Rule Version

Exch-2-317

Severity Override Guidance

Access the EDSP for the list of accepted domains for which this server accepts inbound email.

Open the Exchange Management Shell and enter the following command:

Get-SenderFilterConfig

If the value for 'BlockedDomains' or 'BlockedDomainsAndSubdomains' does not reflect the list of accepted domains, this is a finding.

Check Content Reference

M

Target Key

1995

Comments