Session request from unauthorized senders must be rejected.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
Exch-ED-238	Exch-ED-238	Exch-ED-238_rule		Medium

Description
Sender Identification (SID) is an email anti-spam sanitization process. Sender ID uses DNS MX record lookups to verify the SMTP sending server is authorized to send email for the originating domain. Failure to implement Sender ID risks that SPAM could be admitted into the email domain that originates from rogue servers. Most SPAM content originates from domains where the IP address has been spoofed prior to sending, thereby avoiding detection. By rejecting session initiations from senders who cannot be validated via Sender ID, potential SPAM is eliminated because it is evaluated prior to being admitted to the domain.

Description

Sender Identification (SID) is an email anti-spam sanitization process. Sender ID uses DNS MX record lookups to verify the SMTP sending server is authorized to send email for the originating domain. Failure to implement Sender ID risks that SPAM could be admitted into the email domain that originates from rogue servers. Most SPAM content originates from domains where the IP address has been spoofed prior to sending, thereby avoiding detection. By rejecting session initiations from senders who cannot be validated via Sender ID, potential SPAM is eliminated because it is evaluated prior to being admitted to the domain.

STIG	Date
Microsoft Exchange 2010 Edge Transport Server Role	2012-05-31

Details

Check Text ( C-_chk )
Open the Exchange Management Shell and enter the following command. Get-SenderIdConfig \| Select Name, Identity, SpoofedDomainAction Reject If the value of "SpoofedDomainAction" is not set to "Reject", this is a finding.

Fix Text (F-_fix)
Open the Exchange Management Shell and enter the following command. Set-SenderIdConfig -SpoofedDomainAction Reject