V-228385
CAT IIIExchange Message size restrictions must be controlled on Send connectors.
- Ships Affected
- 1
- Total Findings
- 1
- Open
- 1
- Closed
- 0
Check Text
Review the Email Domain Security Plan (EDSP) or document that contains this information.
Determine the maximum message send size.
Open the Exchange Management Shell and enter the following command:
Get-SendConnector | Select Name, Identity, MaxMessageSize
For each Send connector, if the value of "MaxMessageSize" is not the same as the global value, this is a finding.
or
If "MaxMessageSize" is set to a numeric value different from the maximum message send size value documented in the EDSP, this is a finding.
Fix Text
Update the EDSP to specify the "MaxMessageSize" value or verify that this information is documented by the organization.
Open the Exchange Management Shell and enter the following command:
Set-SendConnector -Identity <'IdentityName'> -MaxMessageSize <MaxSendSize>
Note: The <IdentityName> value must be in single quotes.
or
Enter the value as identified by the EDSP that has obtained a signoff with risk acceptance.
Repeat the procedures for each Send connector.
STIG Reference
- STIG
- Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide
- Version
- 2
- Release
- 6
- Rule ID
- SV-228385r879651_rule
All Occurrences
This vulnerability appears on 1 ship(s)
| Ship | Hull # | Source File | Status | Assigned To | Scan Date | Actions |
|---|---|---|---|---|---|---|
| USNS MONTFORD POINT | T-ESD-1 | _Reviewed/MONT-MB-002/Checklist/MONT-MB-002_MSExchange2016MB_V2R6_20251023-152357.ckl | Unassigned | 2026-01-14T12:57:33.455034 | View in Context |