1.2 Set 'Maximum receive size - organization level' to '10240'

Information

This limit includes the message header, the message body, and any attachments. For internal message flow, Exchange Server uses the custom X-MS-Exchange-Organization-OriginalSize message header to record the original message size of the message as it enters the Exchange Server organization. Whenever the message is checked against the specified message size limits, either the lower value of the current message size or the original message size header is used. The size of the message can change because of content conversion, encoding, and agent processing.

Rationale:

This setting somewhat limits the impact that a malicious user or a computer with malware can have on the Exchange infrastructure by restricting the size of incoming messages.

Solution

To implement the recommended state, execute the following PowerShell cmdlet:

Set-TransportConfig -MaxReceiveSize 10240KB

See Also

https://workbench.cisecurity.org/files/1512

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-5

Plugin: Windows

Control ID: 32f3a6f46a8f1e32f670bce42f8b939f7c0786c9610037fae6ee137fbd99c07c