DISA Microsoft Exchange 2013 Client Access Server STIG V1R3

Details Log files help establish a history of activities, and can be useful in detecting attack attempts or determining tuning...

Details Scripts often provide a way for attackers to infiltrate a system, especially those downloaded from untrusted locations. By setting...

Details The IMAP4 protocol is not approved for use within the DoD. It uses a clear text-based user name and...

Details The POP3 protocol is not approved for use within the DoD. It uses a clear text based user name...

Details To reduce the vectors through which a server can be attacked, unneeded application components should be disabled or removed....

Details To reduce the vectors through which a server can be attacked, unneeded application components should be disabled or removed....

Details Default product installations may provide more generous access permissions than are necessary to run the application. By examining and...

Details Exchange software, as with other application software installed on a host system, must be included in a system baseline...

Details Without protection of the transmitted information, confidentiality and integrity may be compromised since unprotected communications can be intercepted and...

Details Failure to install the most current Exchange service pack leaves a system vulnerable to exploitation. Current service packs correct...