Port Scans
Oracle Cloud Infrastructure Vulnerability Scanning Service helps identify ports in your Compute instances that are unintentionally left open. Open ports might be a potential attack vector to your cloud resources or enable hackers to exploit other vulnerabilities.
The Vulnerability Scanning service makes no security determination on open ports. You must assess whether these ports should be open on the specified IP addresses, and if they shouldn't be open, take appropriate action.
The Vulnerability Scanning service performs port scans only if all the following are true:
- At least one compute (host) target exists. See Compute Targets.
- At least one Compute target is associated with a scan recipe that enables port scanning. See Editing a Compute Scan Recipe.
The Vulnerability Scanning service creates a separate report for each Compute instance that you added to the target configurations. The report has the same name as the instance.
The Vulnerability Scanning service saves the results for a Compute instance in the same compartment as the instance's Vulnerability Scanning target.
Consider the following example.
- The Compute instance
MyInstanceis inCompartmentA. MyInstanceis specified inTarget1.Target1is inCompartmentB.- All reports related to
MyInstanceare inCompartmentB.
This section contains the following topics: