STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 5 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← SI-8 (2) — Spam Protection

CCI-001308

Definition

Automatically update spam protection mechanisms on an organization-defined frequency.

Parent Control

SI-8 (2)Spam ProtectionSystem and Information Integrity

Linked STIG Checks (62)

V-205024CAT IIThe ALG that implements spam protection mechanisms must be updated automatically.Application Layer Gateway Security Requirements Guide V-213454CAT IIMicrosoft Defender AV must be configured to check for definition updates daily.Microsoft Defender Antivirus Security Technical Implementation Guide V-221232CAT IIExchange messages with a blank sender field must be rejected.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221233CAT IIExchange messages with a blank sender field must be filtered.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221234CAT IIExchange filtered messages must be archived.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221235CAT IIThe Exchange Sender filter must block unaccepted domains.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221236CAT IIExchange nonexistent recipients must not be blocked.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221237CAT IIThe Exchange Sender Reputation filter must be enabled.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221238CAT IIThe Exchange Sender Reputation filter must identify the spam block level.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221239CAT IIExchange Attachment filtering must remove undesirable attachments by file type.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221240CAT IIThe Exchange Spam Evaluation filter must be enabled.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221241CAT IIThe Exchange Block List service provider must be identified.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221242CAT IIExchange messages with a malformed From address must be rejected.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221243CAT IIThe Exchange Recipient filter must be enabled.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221244CAT IIThe Exchange tarpitting interval must be set.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221245CAT IIExchange internal Receive connectors must not allow anonymous connections.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221246CAT IIExchange Simple Mail Transfer Protocol (SMTP) IP Allow List entries must be empty.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221247CAT IIThe Exchange Simple Mail Transfer Protocol (SMTP) IP Allow List Connection filter must be enabled.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221248CAT IIThe Exchange Simple Mail Transfer Protocol (SMTP) Sender filter must be enabled.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221249CAT IIExchange must have antispam filtering installed.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221250CAT IIExchange must have antispam filtering enabled.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221251CAT IIExchange must have antispam filtering configured.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221252CAT IIExchange Sender Identification Framework must be enabled.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-221253CAT IExchange must render hyperlinks from email sources from non-.mil domains as unclickable.Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide V-228391CAT IIExchange Internal Receive connectors must not allow anonymous connections.Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide V-228392CAT IIExchange external/Internet-bound automated response messages must be disabled.Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide V-228393CAT IIExchange must have anti-spam filtering installed.Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide V-228394CAT IIExchange must have anti-spam filtering enabled.Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide V-228395CAT IIExchange must have anti-spam filtering configured.Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide V-228396CAT IIExchange must not send automated replies to remote domains.Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide V-228397CAT IExchange servers must have an approved DoD email-aware virus protection software installed.Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide V-228398CAT IIIThe Exchange Global Recipient Count Limit must be set.Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide V-259608CAT IIActive hyperlinks in messages from non .mil domains must be rendered unclickable.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259609CAT IIExchange messages with a blank sender field must be rejected.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259610CAT IIExchange messages with a blank sender field must be filtered.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259611CAT IIExchange filtered messages must be archived.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259612CAT IIThe Exchange sender filter must block unaccepted domains.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259613CAT IIExchange nonexistent recipients must not be blocked.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259614CAT IIThe Exchange Sender Reputation filter must be enabled.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259615CAT IIThe Exchange Sender Reputation filter must identify the spam block level.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259616CAT IIExchange Attachment filtering must remove undesirable attachments by file type.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259617CAT IIThe Exchange Spam Evaluation filter must be enabled.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259618CAT IIThe Exchange Block List service provider must be identified.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259619CAT IIExchange messages with a malformed From address must be rejected.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259620CAT IIThe Exchange Recipient filter must be enabled.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259621CAT IIThe Exchange tarpitting interval must be set.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259622CAT IIExchange internal Receive connectors must not allow anonymous connections.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259623CAT IIExchange Simple Mail Transfer Protocol (SMTP) IP Allow List entries must be empty.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259624CAT IIThe Exchange Simple Mail Transfer Protocol (SMTP) IP Allow List Connection filter must be enabled.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259625CAT IIThe Exchange Simple Mail Transfer Protocol (SMTP) Sender filter must be enabled.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259626CAT IIExchange must have anti-spam filtering installed.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259627CAT IIExchange must have anti-spam filtering enabled.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259628CAT IIExchange must have anti-spam filtering configured.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259629CAT IIExchange Sender Identification Framework must be enabled.Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide V-259686CAT IExchange servers must have an approved DOD email-aware virus protection software installed.Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide V-259687CAT IIExchange internal receive connectors must not allow anonymous connections.Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide V-259688CAT IIExchange external/internet-bound automated response messages must be disabled.Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide V-259689CAT IIExchange must have anti-spam filtering installed.Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide V-259690CAT IIExchange must have anti-spam filtering enabled.Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide V-259691CAT IIExchange must have anti-spam filtering configured.Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide V-259692CAT IIExchange must not send automated replies to remote domains.Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide V-259693CAT IIIThe Exchange Global Recipient Count Limit must be set.Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide