Underground: Hacking, madness and obsession on the electronic frontier - Suelette Dreyfus

He had a quick look around, following the pattern of most hackers breaking into a new machine. First thing to do was to check the electronic mail of the `borrowed' account. Email often contains valuable information. One company manager might send another information about other account names, password changes or even phone numbers to modems at the company itself. Then it was off to check the directories available for anyone to read on the main system—another good source of information. Final stop: Minerva's bulletin board of news. This included postings from the system operators about planned downtime or other service issues. He didn't stay long. The first visit was usually mostly a bit of reconnaissance work.

Minerva had many uses. Most important among these was the fact that Minerva gave hackers an entry point into various X.25 networks. X.25 is a type of computer communications network, much like the Unix-based Internet or the VMS-based DECNET. It has different commands and protocols, but the principle of an extensive worldwide data communications network is the same. There is, however, one important difference. The targets for hackers on the X.25 networks are often far more interesting. For example, most banks are on X.25. Indeed, X.25 underpins many aspects of the world's financial markets. A number of countries' classified military computer sites only run on X.25. It is considered by many people to be more secure than the Internet or any DECNET system.

Minerva allowed incoming callers to pass into the X.25 network—something most Australian universities did not offer at the time. And Minerva let Australian callers do this without incurring a long-distance telephone charge.

In the early days of Minerva, the OTC operators didn't seem to care much about the hackers, probably because it seemed impossible to get rid of them. The OTC operators managed the OTC X.25 exchange, which was like a telephone exchange for the X.25 data network. This exchange was the data gateway for Minerva and other systems connected to that data network.

Australia's early hackers had it easy, until Michael Rosenberg arrived.

Rosenberg, known on-line simply as MichaelR, decided to clean up Minerva. An engineering graduate from Queensland University, Michael moved to Sydney when he joined OTC at age 21. He was about the same age as the hackers he was chasing off his system. Rosenberg didn't work as an OTC operator, he managed the software which ran on Minerva. And he made life hell for people like Force. Closing up security holes, quietly noting accounts used by hackers and then killing those accounts, Rosenberg almost single-handedly stamped out much of the hacker activity in OTC's Minerva.

Despite this, the hackers—`my hackers' as he termed the regulars—had a grudging respect for Rosenberg. Unlike anyone else at OTC, he was their technical equal and, in a world where technical prowess was the currency, Rosenberg was a wealthy young man.

He wanted to catch the hackers, but he didn't want to see them go to prison. They were an annoyance, and he just wanted them out of his system. Any line trace, however, had to go through Telecom, which was at that time a separate body from OTC. Telecom, Rosenberg was told, was difficult about these things because of strict privacy laws. So, for the most part, he was left to deal with the hackers on his own. Rosenberg could not secure his system completely since OTC didn't dictate passwords to their customers. Their customers were usually more concerned about employees being able to remember passwords easily than worrying about warding off wily hackers. The result: the passwords on a number of Minerva accounts were easy pickings.

The hackers and OTC waged a war from 1988 to 1990, and it was fought in many ways.

Sometimes an OTC operator would break into a hacker's on-line session demanding to know who was really using the account. Sometimes the operators sent insulting messages to the hackers—and the hackers gave it right back to them. They broke into the hacker's session with `Oh, you idiots are at it again'. The operators couldn't keep the hackers out, but they had other ways of getting even.