Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
Exch-HB-218 | Exch-HB-218 | Exch-HB-218_rule | Medium |
Description |
---|
Default product installations may provide more generous permissions than are necessary to run the application. By examining and tailoring permissions to more closely provide the least amount of privilege possible, attack vectors that align with user permissions are less likely to access more highly secured areas. |
STIG | Date |
---|---|
Microsoft Exchange 2010 Hub Transport Server Role | 2012-05-31 |
Check Text ( C-_chk ) |
---|
The default installation directory is \Program Files\Microsoft\Exchange Server\V14. Verify the permissions on the directory. If any group or user has elevated permissions, this is a finding. |
Fix Text (F-_fix) |
---|
Remove the elevated group or user permissions from the Exchange application directory. |