V-228387
CAT IIIThe Exchange global inbound message size must be controlled.
- Ships Affected
- 1
- Total Findings
- 1
- Open
- 0
- Closed
- 1
Check Text
Review the Email Domain Security Plan (EDSP) or document that contains this information.
Determine the global maximum message receive size.
Open the Exchange Management Shell and enter the following command:
Get-TransportConfig | Select Name, Identity, MaxReceiveSize
If the value of "MaxReceiveSize" is not set to "10MB", this is a finding.
or
If "MaxReceiveSize" is set to an alternate value and has signoff and risk acceptance in the EDSP, this is not a finding.
Fix Text
Update the EDSP to specify the "MaxReceiveSize" value or verify that this information is documented by the organization.
Open the Exchange Management Shell and enter the following command:
Set-TransportConfig -MaxReceiveSize 10MB
or
Enter the value as identified by the EDSP that has obtained a signoff with risk acceptance.
STIG Reference
- STIG
- Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide
- Version
- 2
- Release
- 6
- Rule ID
- SV-228387r879651_rule
All Occurrences
This vulnerability appears on 1 ship(s)
| Ship | Hull # | Source File | Status | Assigned To | Scan Date | Actions |
|---|---|---|---|---|---|---|
| USNS MONTFORD POINT | T-ESD-1 | _Reviewed/MONT-MB-002/Checklist/MONT-MB-002_MSExchange2016MB_V2R6_20251023-152357.ckl | Unassigned | 2026-01-14T12:57:33.455034 | View in Context |