Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-207314 | EX13-MB-000240 | SV-207314r615936_rule | Medium |
Description |
---|
Spam originators, in an effort to refine mailing lists, sometimes monitor transmissions for automated bounce-back messages. Automated messages include such items as "Out of Office" responses, nondelivery messages, or automated message forwarding. Automated bounce-back messages can be used by a third party to determine if users exist on the server. This can result in the disclosure of active user accounts to third parties, paving the way for possible future attacks. |
STIG | Date |
---|---|
Microsoft Exchange 2013 Mailbox Server Security Technical Implementation Guide | 2021-12-16 |
Check Text ( C-7572r393455_chk ) |
---|
Open the Exchange Management Shell and enter the following command: Get-RemoteDomain | Select Name, DomainName, Identity, AllowedOOFType If the value of AllowedOOFType is not set to InternalLegacy, this is a finding. |
Fix Text (F-7572r393456_fix) |
---|
Open the Exchange Management Shell and enter the following command: Set-RemoteDomain -Identity <'IdentityName'> -AllowedOOFType 'InternalLegacy' Note: The |