STIGQter: STIG Summary:| Checked | Name | Title |
|---|---|---|
| ☐ | SV-43981r3_rule | Message size restrictions must be controlled on Receive connectors. |
| ☐ | SV-43984r1_rule | Receive Connector timeout must be limited. |
| ☐ | SV-43986r1_rule | Internal Receive Connectors must not allow anonymous connections. |
| ☐ | SV-43987r1_rule | Internal Receive Connectors must require encryption. |
| ☐ | SV-43992r2_rule | Receive Connectors must control the number of recipients per message. |
| ☐ | SV-43995r1_rule | Receive Connectors must be clearly named. |
| ☐ | SV-43996r2_rule | Auto-forwarding email to remote domains must be disabled or restricted. |
| ☐ | SV-43999r2_rule | Receive Connector Maximum Hop Count must be 60. |
| ☐ | SV-44004r1_rule | Send Connectors must be clearly named. |
| ☐ | SV-44006r1_rule | Send Connectors delivery retries must be controlled. |
| ☐ | SV-44007r3_rule | Message size restrictions must be controlled on Send connectors. |
| ☐ | SV-44009r1_rule | Send Connector connections count must be limited. |
| ☐ | SV-44010r1_rule | Internal Send Connectors must use Domain Security (Mutual Authentication TLS). |
| ☐ | SV-44012r3_rule | Internal Send Connectors must require encryption. |
| ☐ | SV-44014r2_rule | Internet facing send Connectors must specify a Smart Host. |
| ☐ | SV-44016r1_rule | Connectivity logging must be enabled. |
| ☐ | SV-44018r1_rule | Exchange must not send delivery reports to remote domains. |
| ☐ | SV-44019r1_rule | Exchange must not send non-delivery reports to remote domains. |
| ☐ | SV-44021r1_rule | External/Internet bound automated response messages must be disabled. |
| ☐ | SV-44023r1_rule | Exchange must not send auto replies to remote domains. |
| ☐ | SV-44026r2_rule | Email Diagnostic log level must be set to low or lowest level. |
| ☐ | SV-44028r2_rule | The Send Fatal Errors to Microsoft must be disabled. |
| ☐ | SV-44029r2_rule | Administrator audit logging must be enabled. |
| ☐ | SV-44031r1_rule | Audit data must be protected against unauthorized access. |
| ☐ | SV-44033r1_rule | Exchange application directory must be protected from unauthorized access. |
| ☐ | SV-44036r1_rule | Exchange must not send Customer Experience reports to Microsoft. |
| ☐ | SV-44037r2_rule | Audit record parameters must be set. |
| ☐ | SV-44038r1_rule | Audit data must be on separate partitions. |
| ☐ | SV-44039r3_rule | Queue monitoring must be configured with threshold and action. |
| ☐ | SV-44040r1_rule | Email software must be monitored for change on INFOCON frequency schedule. |
| ☐ | SV-44041r1_rule | Exchange software baseline copy must exist. |
| ☐ | SV-44043r2_rule | Services must be documented and unnecessary services must be removed or disabled. |
| ☐ | SV-44044r1_rule | Global inbound message size must be controlled. |
| ☐ | SV-44045r2_rule | Email application must not share a partition with another application. |
| ☐ | SV-44046r2_rule | Servers must use approved DoD certificates. |
| ☐ | SV-44047r2_rule | Global outbound message size must be controlled. |
| ☐ | SV-44049r3_rule | The current, approved service pack must be installed. |
| ☐ | SV-44050r1_rule | Global recipient count limit must be set. |
| ☐ | SV-44052r1_rule | Local machine policy must require signed scripts. |
| ☐ | SV-44054r1_rule | SMTP automated banner response must not reveal server details. |
| ☐ | SV-44055r2_rule | Outbound Connection Limit per Domain Count must be controlled. |
| ☐ | SV-44066r1_rule | Outbound Connection Timeout must be 10 or less. |
| ☐ | SV-75445r1_rule | Internal Send Connectors must use an authentication level |