Configure Dial-up and Hang up Options for Outlook.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-17585	DTOO226 - Outlook	SV-18708r1_rule	ECSC-1	Medium

Description
By default, users can connect to their e-mail servers using dial-up networking if their accounts are configured appropriately. Dial-up connections are often used by mobile users who need to connect to the Internet from remote locations. Remote connections are generally not subject to the same restrictions as enterprise network environments, which can make them more vulnerable to attack.

STIG	Date
Microsoft Outlook 2007	2015-09-17

Details

Check Text ( C-18885r1_chk )
The policy value for User Configuration -> Administrative Templates -> Microsoft Office Outlook 2007 -> Tools \ Options -> Mail Setup “Dial–up options” will be set to “Enabled” and Hang up when finished sending, receiving, or updating is selected. Procedure: Use the Windows Registry Editor to navigate to the following key: HKCU\Software\Policies\Microsoft\Office\12.0\Outlook\Options\Mail Criteria: If the value Hangup after Spool is REG_DWORD = 1, this is not a finding.

Check Text ( C-18885r1_chk )

The policy value for User Configuration -> Administrative Templates -> Microsoft Office Outlook 2007 -> Tools \ Options -> Mail Setup “Dial–up options” will be set to “Enabled” and Hang up when finished sending, receiving, or updating is selected.

Procedure: Use the Windows Registry Editor to navigate to the following key:

HKCU\Software\Policies\Microsoft\Office\12.0\Outlook\Options\Mail

Criteria: If the value Hangup after Spool is REG_DWORD = 1, this is not a finding.

Fix Text (F-17503r1_fix)
The policy value for User Configuration -> Administrative Templates -> Microsoft Office Outlook 2007 -> Tools \ Options -> Mail Setup “Dial–up options” will be set to “Enabled” and Hang up when finished sending, receiving, or updating is selected.