blacklist American Modern

This commit is contained in:
cyberMonk 2021-02-10 11:09:06 -05:00
parent 05380b03da
commit ab7a90871e
2 changed files with 12 additions and 10 deletions

View File

@ -1,5 +1,7 @@
#!/bin/bash
# lobbying data to incorporate in the future: https://disclosurespreview.house.gov/
typeset -r db_file=$(mktemp --dry-run --suffix=.db)
table_populate()
@ -137,7 +139,7 @@ insert into fiTbl (fi_kind,name,url,cispa,dt,aws) values ("insur
insert into fiTbl (fi_kind,name,url,cispa,dt,aws,antitor) values ("insurer","Allied","https://www.alliedinsurance.com",1,1,1,1);
insert into fiTbl (fi_kind,name,url,cispa,dt,antitor,notes) values ("insurer","Allstate","https://www.allstate.com",1,1,1,"akamai hosted");
insert into fiTbl (fi_kind,name,url) values ("insurer","American Family","https://www.amfam.com");
insert into fiTbl (fi_kind,name,url,notes) values ("insurer","American Modern","https://www.amig.com","**Google Cloud-hosted**");
insert into fiTbl (fi_kind,name,url,cflogin,notes) values ("insurer","American Modern","https://www.amig.com",1,"**Google Cloud-hosted** landing page, which is CloudFlare-free but the transactional host my.doculivery.com is CFd");
insert into fiTbl (fi_kind,name,url,cispa,dt,notes) values ("insurer","Ameriprise Financial","https://www.ameriprise.com",1,1,"akamai hosted");
insert into fiTbl (fi_kind,name,url,antitor) values ("insurer","Amica","https://www.amica.com",1);
insert into fiTbl (fi_kind,name,url,dt) values ("insurer","Berkshire Hathaway","https://berkshirehathaway.com",1);
@ -148,7 +150,7 @@ insert into fiTbl (fi_kind,name,url,alec,dt,notes) values ("insur
insert into fiTbl (fi_kind,name,url,dt) values ("insurer","First American Insurance Agency","https://www.faiagency.com",1);
insert into fiTbl (fi_kind,name,url,parent,dt) values ("insurer","Foremost","http://www.foremost.com","Farmers",1);
insert into fiTbl (fi_kind,name,url,alec,dt,notes) values ("insurer","Geico","https://www.geico.com",1,1,"akamai hosted but transactional site ecams.geico.com is not.");
insert into fiTbl (fi_kind,name,url,parent,notes) values ("insurer","Gen Re","https://www.genre.com","Berkshire Hathaway","akamai hosted, but transactional site www.genre-connect.com is not.");
insert into fiTbl (fi_kind,name,url,parent,notes) values ("insurer","Gen Re","https://www.genre.com","Berkshire Hathaway","akamai hosted, but transactional site www.genre-connect.com is not. The documentation (""Knowledge"" link) is CloudFlared.");
insert into fiTbl (fi_kind,name,url,dt,notes) values ("insurer","National General","https://www.nationalgeneral.com",1,"formerly GMAC");
insert into fiTbl (fi_kind,name,url,dt) values ("insurer","Grange Mutual","https://www.grangeinsurance.com",1);
insert into fiTbl (fi_kind,name,url,parent) values ("insurer","Harleysville Group","https://www.harleysvillegroup.com","Nationwide");
@ -165,7 +167,7 @@ insert into fiTbl (fi_kind,name,url,antitor,dt) values ("insur
insert into fiTbl (fi_kind,name,url,antitor,notes) values ("insurer","Safe Auto","http://www.safeauto.com",1,"**Tor-hostile** sign-in page despite Tor-friendly landing page.");
insert into fiTbl (fi_kind,name,url,parent,antitor,notes) values ("insurer","Safeco","https://safeco.com","Liberty Mutual",1,"akamai hosted");
insert into fiTbl (fi_kind,name,url,dt,notes) values ("insurer","Selective","https://www.selective.com",1,"pushes CloudFlare javascript, but apparently execution is optional.");
insert into fiTbl (fi_kind,name,url,dt) values ("insurer","Shelter Insurance","https://shelterinsurance.com",1);
insert into fiTbl (fi_kind,name,url,dt,notes) values ("insurer","Shelter Insurance","https://web.archive.org/web/shelterinsurance.com",1,"CloudFlare name server is used, which means they can trivially flip a switch to become a CF site.");
insert into fiTbl (fi_kind,name,url,antitor,alec,cispa,dt,notes) values ("insurer","State Farm","https://www.statefarm.com",1,1,1,1,"edgecast-hosted");
insert into fiTbl (fi_kind,name,url,aws,dt) values ("insurer","Stewart Information Services Corporation","https://www.stewart.com/en.html",1,1);
insert into fiTbl (fi_kind,name,url) values ("insurer","The General","https://thegeneral.com");
@ -376,7 +378,7 @@ EOF
cat <<'EOF'
# Why CISPA supporters are graylisted
The [Cyber Intelligence Sharing and Protection Act](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act)
The [Cyber Intelligence Sharing and Protection Act (CISPA)](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act)
was a bill to bypass the 4th amendment to promote a system of unwarranted
mass surveillance through information sharing between the government and private sector.
Congress blocked the bill, but it was later reincarnated as CISA and it passed.
@ -419,7 +421,7 @@ In the end, you're the judge.
Financial institutions hosted on GAFAM (Google Amazon Facebook Apple Microsoft) are graylisted.
The wrongdoing is indirect and in the end taking a security risk doesn't necessarily lead to a breach.
Of course it's still favorable to choose a whitelisted financial institution.
Of course it's still ethically favorable to choose a whitelisted financial institution if possible.
EOF
};#gen_md

View File

@ -11,17 +11,16 @@
| *insurer* | *ALEC member* | *Tor-hostile* | *sensitive info exposed to CloudFlare* | *supported CISPA* | *forced drug testing of staff* | *notes* |
|---|---|---|---|---|---|---|
|[Allianz](https://allianz.com)|n|n|n|🕵|🧪|**Amazon AWS-hosted**|
|[American Modern](https://www.amig.com)|n|n|n|n|n|**Google Cloud-hosted**|
|[Ameriprise Financial](https://www.ameriprise.com)|n|n|n|🕵|🧪|akamai hosted|
|[Berkshire Hathaway](https://berkshirehathaway.com)|n|n|n|n|🧪||
|[First American Insurance Agency](https://www.faiagency.com)|n|n|n|n|🧪||
|[Gen Re](https://www.genre.com)|n|n|n|n|n|parent: Berkshire Hathaway; akamai hosted, but transactional site www.genre-connect.com is not.|
|[Gen Re](https://www.genre.com)|n|n|n|n|n|parent: Berkshire Hathaway; akamai hosted, but transactional site www.genre-connect.com is not. The documentation ("Knowledge" link) is CloudFlared.|
|[Grange Mutual](https://www.grangeinsurance.com)|n|n|n|n|🧪||
|Horace Mann|n|n|n|n|🧪|no website, only an access-restricted Facebook page|
|[MetLife](https://www.metlife.com)|n|n|n|🕵|🧪|**Amazon AWS-hosted**; transactional site identity.metlife.com is not AWS|
|[National General](https://www.nationalgeneral.com)|n|n|n|n|🧪|formerly GMAC|
|[Selective](https://www.selective.com)|n|n|n|n|🧪|pushes CloudFlare javascript, but apparently execution is optional.|
|[Shelter Insurance](https://shelterinsurance.com)|n|n|n|n|🧪||
|[Shelter Insurance](https://web.archive.org/web/shelterinsurance.com)|n|n|n|n|🧪|CloudFlare name server is used, which means they can trivially flip a switch to become a CF site.|
|[Stewart Information Services Corporation](https://www.stewart.com/en.html)|n|n|n|n|🧪|**Amazon AWS-hosted**|
|[Travelers](https://www.travelers.com)|n|n|n|🕵|🧪|akamai hosted|
@ -31,6 +30,7 @@
|21st Century|n|n|n|n|n|parent: Farmers|
|Allied|n|👁|n|🕵|🧪|**Amazon AWS-hosted**|
|Allstate|n|👁|n|🕵|🧪|akamai hosted|
|American Modern|n|n|🌩|n|n|**Google Cloud-hosted** landing page, which is CloudFlare-free but the transactional host my.doculivery.com is CFd|
|Amica|n|👁|n|n|n||
|Brown & Brown Insurance|n|n|🌩|🕵|n||
|Esurance|n|n|n|n|n|parent: Allstate; akamai hosted|
@ -167,7 +167,7 @@ The storm cloud (🌩) indicates that account access is resticted and exclusive
# Why CISPA supporters are graylisted
The [Cyber Intelligence Sharing and Protection Act](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act)
The [Cyber Intelligence Sharing and Protection Act (CISPA)](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act)
was a bill to bypass the 4th amendment to promote a system of unwarranted
mass surveillance through information sharing between the government and private sector.
Congress blocked the bill, but it was later reincarnated as CISA and it passed.
@ -210,4 +210,4 @@ In the end, you're the judge.
Financial institutions hosted on GAFAM (Google Amazon Facebook Apple Microsoft) are graylisted.
The wrongdoing is indirect and in the end taking a security risk doesn't necessarily lead to a breach.
Of course it's still favorable to choose a whitelisted financial institution.
Of course it's still ethically favorable to choose a whitelisted financial institution if possible.