2.3.2 Ensure 'Enable OOF messages to remote domains' is set to 'None'

Information

This policy setting is used to determine if the server automatically forwards out-of-office messages to remote domains.

Rationale:

Attackers can use automated messages to determine whether a user is active, in the office, traveling, and so on. An attacker might use this information to conduct other types of attacks.

Impact:

Remote users will not receive automated out-of-office messages.

Solution

To implement the recommended state, execute the following PowerShell cmdlet:

Set-RemoteDomain 'RemoteDomain' -AllowedOOFType None

Default Value:

External

See Also

https://workbench.cisecurity.org/benchmarks/12442

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b.

Plugin: Windows

Control ID: 75e4c3151cf941e2e51abb8e08123778d61852bf8b8b72c294650c2c888dbc90