...
Description: This control ensures that OCI SSH access is restricted from the internet. OCI Security List and Security Groups uses Applications (Protocol, Port) and Network IP address as source and destination to allow traffic to VNICs in a subnet. Each rule either allows or denies traffic when its conditions are met. Network IP addresses with Generic (0.0.0.0/0) incoming traffic from internet to VCN using SSH on Port 22 must be avoided in the Security List and Security Groups.C
Remediation Steps:
Perform following to update the security rules in security List :
...