Slashdot Mirror

← Back to Stories (view on slashdot.org)

Nmap Featured in The Matrix Reloaded

Posted by CmdrTaco on from the ain't-that-special dept.

rajiv was among dozens to report that unlike most "Hacks" in film, The Matrix reloaded actually has an ounce of reality where other films would rely on fancy 3D graphics. You can see more at Insecure.org where they have screenshots. It's only on screen for a split second, but Tritnity uses Nmap to find a vulnerable SSH server, and then exploits it using the SSH1 CRC32 exploit from 2001.

15 of 574 comments (clear)

  1. Private Network! by Anonymous Coward · · Score: 4, Informative

    Now we know that we cannot hack into the Matrix from our Personal Computer:

    As you can see on the screenshot, the IP is 10.2.2.2, which is on the 10.0.0.0/255.0.0.0 network reserved for private usage.

    It's impossible to reach such an IP directly (without hacking their server / router / firewall first) from an arbitrary point of the Internet.

    Damn!

  2. Before you say it... by tbmaddux · · Score: 5, Informative
    ...exploits it using the SSH1 CRC32 exploit from 2001.
    I'm sure there will be lots of funny jokes posted about using a 2001 exploit far into the future, patching systems, etc. etc. However, while the Matrix films are set in the future, the Matrix is set in the present, at the "peak of your civilization" according to Agent Smith. So it is appropriate for Trinity to hack a present-day system using a present-day exploit. She could even be ahead of her time, if the first movie was set in 1999 and it's only 6 months later, then the Matrix might not even have gotten through Y2K yet (did I just spoil the third movie).

    Aside from the amusing idea of having someone hack a computer program using their avatar inside the computer-generated construct of the Matrix, this sameness of the Matrix over long time periods raises an unanswered question in my mind. Why don't the people notice the lack of advancement in the Matrix? Over a hundred years of 1999-ness... no stunning advances in CGI, or science, or anything!

    --
    Can't you see that everyone is buying station wagons?
  3. Re:Uhm... by marx · · Score: 5, Informative
    So in several hundred years time people STILL won't have patched their bloody SSH holes?
    Inside the Matrix it's present time, and the exploit was launched against a standard power plant computer, not against a Matrix computer.

    So it's accurate.

  4. future? by DreadSpoon · · Score: 2, Informative

    Keep seeing posts about "in the future they still have this hole" or similiar items.

    Remember, folks, the hack wasn't taking place in the future - it was in the Matrix. They weren't hacking the machines, they were hacking the "fake" computers in the power plant.

    Think of it like hacking into an ancient copy of usermode linux. ;-)

  5. Well that's why she had to BREAK INTO the office! by cculianu · · Score: 5, Informative

    If you will remember the movie, that computer _was_ on a private network. She had to break into this private secure office building before she even began hacking. So she was behind the firewall already because she was physically in the building.

  6. Re:Uhm... by SN74S181 · · Score: 1, Informative

    Critical power plant computers do not belong on the public Internet. Generally they are not online on any publicly available network connection.

    But it's just another Hollywood flick, of course.

  7. Re:SSH: security through obscurity? by Quixotic+Raindrop · · Score: 2, Informative

    Actually, it's common for there to be exploits that are not generally well known. As long as you are aware of the bug that makes the exploits useful, and are made aware of how to patch ssh to prevent the bug from being exploited, it doesn't matter how many different exploits there are. If you have patched, or taken the advisory's other actions, you won't be affected by techniques that exploit that bug, whether public or not.

    --
    Only two things are infinite, the universe and human stupidity, and I'm not sure about the former. (Einstein)
  8. Re:My 2 cents... by treat · · Score: 2, Informative
    to stop someone else logging in and stopping you?

    1) You have not stopped telnet or other services run from inetd.
    2) Killall only does what you think it does on Linux. On Solaris, for instance, it does something rather more destructive.
    3) getty is started from init, killing it won't help.
    4) killing login will only stop people in the middle of logging in.

  9. Re:Uhm... by Anonymous Coward · · Score: 1, Informative

    Neo is rc6 and it takes 100 years to get to his stage, so it has to be at lest 1999+600. Since war takes some time, and there weren't sentient robots in 1999 (that i'm aware of), the matrix should have started some time after 1999, let's assume 50-200 years, in which case the date in the matrix is 2649-2799.

  10. Re:Uhm... by soulsteal · · Score: 4, Informative

    While you're correct in saying that mission-critical private servers don't belong on public networks, look at the circumstances:

    She's IN the power plant.
    She's running the attack on a PRIVATE IP address.

    Personally, I think she wasn't on "teh Intarweb!!1"

  11. Re:Uhm... by MattCohn.com · · Score: 2, Informative

    It's not entirly acurate...

  12. Come on, people by Ezubaric · · Score: 2, Informative


    How can this guy get modded up for being insightful when he doesn't know the name of a major player in the film?

    The Merovingian dynasty was the first kingdom of France to emerge from the ruins of the Roman empire, led by Clovis I. Unlike most ruling families in Europe, though, it's not named after it's founding member. Or I guess you could say it is, since "Merovec" is considered to be a half sea-monster. This gives the cruel character a little more depth ...

    --

    ----------
    I am an expert in electricity. My father held the chair of applied electricity at the state prision.
  13. Re:Nice Password by BarakMich · · Score: 3, Informative

    Mmm... it's been alluded to, but not said flat out, by others.

    It's the 5th incarnation of the city, with the 6th "One"
    In the beginning, there wouldn't be a Zion, but there would be the first "One", who, through the whole process, would create the first Zion. He'd die of age, and this Zion would survive until the 2nd "One"... so on, so forth.
    Neo is the 6th "One", coming from the 5th Zion -- if he were to go through the other door, he would create the 6th Zion.

    Some here understand this progression. Some don't. Hope this helps

  14. Re:Nice Password by martyn+s · · Score: 2, Informative

    01 is the name of the first robot city/nation, where the robots originally go to seek refuge from the awful humans (yes, i say awful with some irony). Anyway, now, Zion is the last remaining human city where the humans seek refuge from the robots. It has been speculated that Zion and Zero-One (01) are the same city. Even if they are not the same actual, their similar names symbolize their similar purposes.

    Hence, the password puts the two together, Zion and 01.

  15. Re:Nice Password by rutledjw · · Score: 3, Informative
    Are you sure? I thought that the Merillynchian (whatever, the guy who had the twins) said "I've survived your 5 predecessors and I'll survive you as well".

    Wouldn't that mean the first "Neo" built the first Zion, second Neo built the second, etc and now it's the 5th Zion that about to get wasted? This Neo will / was supposed to build Zion 6?

    I could be wrong, but I THOUGHT that's what I heard. The Architect also said the 5 before you, didn't he?

    --

    Computer Science is Applied Philosophy