800-53|SI-8

Title

SPAM PROTECTION

Description

The organization:

Supplemental

Information system entry and exit points include, for example, firewalls, electronic mail servers, web servers, proxy servers, remote-access servers, workstations, mobile devices, and notebook/laptop computers. Spam can be transported by different means including, for example, electronic mail, electronic mail attachments, and web accesses. Spam protection mechanisms include, for example, signature definitions.

Reference Item Details

Related: AT-2,AT-3,SC-5,SC-7,SI-3

Category: SYSTEM AND INFORMATION INTEGRITY

Family: SYSTEM AND INFORMATION INTEGRITY

Priority: P2

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.1.4 Ensure mounting of freevxfs filesystems is disabledUnixCIS Amazon Linux 2023 Server L1 v1.0.0
1.1.4.1.3 Ensure 'Consistent Mime Handling' is set to 'Enabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
1.1.4.1.12 Ensure 'Restrict File Download' is set to 'Enabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
1.7 Ensure 'Nonexistent recipients' is set to 'True'WindowsCIS Microsoft Exchange Server 2019 L1 Edge v1.0.0
1.8 Ensure 'Attachment Filtering Agent' is configuredWindowsCIS Microsoft Exchange Server 2019 L1 Edge v1.0.0
1.11 Ensure 'Exchange recipient filter' is set to 'True'WindowsCIS Microsoft Exchange Server 2019 L1 Edge v1.0.0
1.75 Ensure 'DNS interception checks enabled' is set to 'Enabled'WindowsCIS Microsoft Edge L1 v2.0.0
2.1 Alter the Advertised server.info StringUnixCIS Apache Tomcat 10 L2 v1.1.0
2.1 Alter the Advertised server.info StringUnixCIS Apache Tomcat 10 L2 v1.1.0 Middleware
2.1.2 Ensure the Common Attachment Types Filter is enabledmicrosoft_azureCIS Microsoft 365 Foundations E3 L1 v3.0.0
2.1.4 Ensure Safe Attachments policy is enabledmicrosoft_azureCIS Microsoft 365 Foundations E5 L2 v3.0.0
2.1.5 Ensure Safe Attachments for SharePoint, OneDrive, and Microsoft Teams is Enabledmicrosoft_azureCIS Microsoft 365 Foundations E5 L2 v3.0.0
2.1.7 Ensure that an anti-phishing policy has been createdmicrosoft_azureCIS Microsoft 365 Foundations E5 L1 v3.0.0
2.2 Alter the Advertised server.number StringUnixCIS Apache Tomcat 10 L2 v1.1.0 Middleware
2.2 Alter the Advertised server.number StringUnixCIS Apache Tomcat 10 L2 v1.1.0
2.3 Alter the Advertised server.built DateUnixCIS Apache Tomcat 10 L2 v1.1.0
2.3 Alter the Advertised server.built DateUnixCIS Apache Tomcat 10 L2 v1.1.0 Middleware
2.4 Disable X-Powered-By HTTP Header and Rename the Server Value for all ConnectorsUnixCIS Apache Tomcat 10 L2 v1.1.0
2.4 Disable X-Powered-By HTTP Header and Rename the Server Value for all ConnectorsUnixCIS Apache Tomcat 10 L2 v1.1.0 Middleware
2.4.1 Ensure Priority account protection is enabled and configuredmicrosoft_azureCIS Microsoft 365 Foundations E5 L1 v3.0.0
2.4.2 Ensure Priority accounts have 'Strict protection' presets appliedmicrosoft_azureCIS Microsoft 365 Foundations E5 L1 v3.0.0
2.5 Disable client facing Stack TracesUnixCIS Apache Tomcat 10 L1 v1.1.0
2.5 Disable client facing Stack TracesUnixCIS Apache Tomcat 10 L1 v1.1.0 Middleware
2.5.1.5.1 Ensure 'Automatically download attachments' is set to 'Disabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.5.1.5.2 Ensure 'Do not include Internet Calendar integration in Outlook' is set to 'Enabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.5.1.6.1 Ensure 'Download full text of articles as HTML attachments' is set to 'Disabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.5.14.3.1.1 Ensure 'Allow users to demote attachments to Level 2' is set to 'Disabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.5.14.3.1.2 Ensure 'Display Level 1 attachments' is set to 'Disabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.5.14.3.1.3 Ensure 'Do not prompt about Level 1 attachments when closing an item' is set to 'Disabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.5.14.3.1.4 Ensure 'Do not prompt about Level 1 attachments when sending an item' is set to 'Disabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.5.14.3.1.5 Ensure 'Remove file extensions blocked as Level 1' is set to 'Disabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.5.14.3.1.6 Ensure 'Remove file extensions blocked as Level 2' is set to 'Disabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.5.14.4.1 Ensure 'Allow hyperlinks in suspected phishing e-mail messages' is set to 'Disabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.5.14.8 Ensure 'Prevent users from customizing attachment security settings' is set to 'Enabled'WindowsCIS Microsoft Office Enterprise v1.1.0 L1
2.7 Ensure Sever Header is Modified To Prevent Information DisclosureUnixCIS Apache Tomcat 10 L2 v1.1.0
2.7 Ensure Sever Header is Modified To Prevent Information DisclosureUnixCIS Apache Tomcat 10 L2 v1.1.0 Middleware
4.1 Block Mixed Active ContentWindowsCIS Mozilla Firefox 102 ESR Windows L1 v1.0.0
4.1 Block Mixed Active ContentUnixCIS Mozilla Firefox 102 ESR Linux L1 v1.0.0
4.3.1 Enable Botnet C&C Domain Blocking DNS FilterFortiGateCIS Fortigate 7.0.x Level 2 v1.2.0
6.3.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledUnixCIS Apple macOS 14.0 Sonoma v1.0.0 L1
6.3.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledUnixCIS Apple macOS 13.0 Ventura v2.0.0 L1
7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledUnixCIS Apple macOS 12.0 Monterey v3.0.0 L1
7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledUnixCIS Apple macOS 10.15 Catalina v3.0.0 L1
7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledUnixCIS Apple macOS 11.0 Big Sur v4.0.0 L1
8.2 Block Reported Web ForgeriesUnixCIS Mozilla Firefox 102 ESR Linux L1 v1.0.0
8.2 Block Reported Web ForgeriesWindowsCIS Mozilla Firefox 102 ESR Windows L1 v1.0.0
10.15 Do not resolve hosts on logging valvesUnixCIS Apache Tomcat 9 L2 v1.2.0
10.15 Do not resolve hosts on logging valvesUnixCIS Apache Tomcat 10 L2 v1.1.0
10.15 Do not resolve hosts on logging valvesUnixCIS Apache Tomcat 10 L2 v1.1.0 Middleware
10.15 Do not resolve hosts on logging valvesUnixCIS Apache Tomcat 9 L2 v1.2.0 Middleware