Audit Report 1-21: Audit of SBA’s UNIX Operating Systems
On September 28, 2001, the OIG issued Audit Report 1-21, Audit of SBA’s UNIX Operating Systems. The objectives of this audit were to determine whether the security settings and operational controls for the UNIX operating systems were adequate to prevent or detect unauthorized access to programs and data. The OIG also assessed compliance with applicable provisiosn of OMB Circular A-130 and SBA’s Standard Operating Procedure 90-47. The OIG concluded that security over the UNIX servers was not adequate to protect or detect unauthorized access to Agency programs or data.