Table of Contents
What types of scans does the OCI Vulnerability Scanning Service perform?
Learn exactly what the OCI Vulnerability Scanning Service monitors, including open ports on compute instances, compartment-wide host vulnerabilities, and container registry images.
Question
Which type of scan does Vulnerability Scanning Service perform? Select all apply.
A. Detect application bugs.
B. Detect an open port on a specific compute instance.
C. Scan for DDoS attacks.
D. Scan vulnerabilities in all compute instances within a compartment and its subcompartments.
E. Scan vulnerabilities in images within a Container Registry repository.
Answer
B. Detect an open port on a specific compute instance.
D. Scan vulnerabilities in all compute instances within a compartment and its subcompartments.
E. Scan vulnerabilities in images within a Container Registry repository.
Explanation
The Oracle Cloud Infrastructure (OCI) Vulnerability Scanning Service is designed to routinely check resources for potential security issues to improve a user’s overall cloud security posture. When configured, the service performs several specific types of targeted scans.
First, it can run port scans to detect unintentional open ports on specific compute instances that hackers could exploit. Second, it allows administrators to set targets that scan all compute instances (hosts) within a specific compartment and its nested subcompartments for OS vulnerabilities and missing patches. Finally, the service includes container image scanning, which checks for vulnerabilities and risk levels in images stored within a Container Registry repository before they are deployed.
The service does not scan for DDoS attacks (which is handled by OCI Web Application Firewall and DDoS protection services) and it does not detect functional application bugs (which requires separate application testing tools).
Oracle Cloud Infrastructure Cloud Adoption Framework and Essentials certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the OCI CAF graded quizzes and final assessments, earn OCI CAF digital credential and badge.