cyberMonk
/
liberethos_paradigm
2
0
Fork 0
Code Issues 2 Pull Requests Projects Releases Wiki Activity

blacklist American Modern

This commit is contained in:
cyberMonk 2021-02-10 11:09:06 -05:00
parent 05380b03da
commit ab7a90871e
2 changed files with 12 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
tools/gen_brokerage_table.sh → tools/gen_fi_table.sh
View File

@ -1,5 +1,7 @@
#!/bin/bash #!/bin/bash
# lobbying data to incorporate in the future: https://disclosurespreview.house.gov/
typeset -r db_file=$(mktemp --dry-run --suffix=.db) typeset -r db_file=$(mktemp --dry-run --suffix=.db)
table_populate() table_populate()
@ -137,7 +139,7 @@ insert into fiTbl (fi_kind,name,url,cispa,dt,aws) values ("insur
insert into fiTbl (fi_kind,name,url,cispa,dt,aws,antitor) values ("insurer","Allied","https://www.alliedinsurance.com",1,1,1,1); insert into fiTbl (fi_kind,name,url,cispa,dt,aws,antitor) values ("insurer","Allied","https://www.alliedinsurance.com",1,1,1,1);
insert into fiTbl (fi_kind,name,url,cispa,dt,antitor,notes) values ("insurer","Allstate","https://www.allstate.com",1,1,1,"akamai hosted"); insert into fiTbl (fi_kind,name,url,cispa,dt,antitor,notes) values ("insurer","Allstate","https://www.allstate.com",1,1,1,"akamai hosted");
insert into fiTbl (fi_kind,name,url) values ("insurer","American Family","https://www.amfam.com"); insert into fiTbl (fi_kind,name,url) values ("insurer","American Family","https://www.amfam.com");
insert into fiTbl (fi_kind,name,url,notes) values ("insurer","American Modern","https://www.amig.com","**Google Cloud-hosted**"); insert into fiTbl (fi_kind,name,url,cflogin,notes) values ("insurer","American Modern","https://www.amig.com",1,"**Google Cloud-hosted** landing page, which is CloudFlare-free but the transactional host my.doculivery.com is CFd");
insert into fiTbl (fi_kind,name,url,cispa,dt,notes) values ("insurer","Ameriprise Financial","https://www.ameriprise.com",1,1,"akamai hosted"); insert into fiTbl (fi_kind,name,url,cispa,dt,notes) values ("insurer","Ameriprise Financial","https://www.ameriprise.com",1,1,"akamai hosted");
insert into fiTbl (fi_kind,name,url,antitor) values ("insurer","Amica","https://www.amica.com",1); insert into fiTbl (fi_kind,name,url,antitor) values ("insurer","Amica","https://www.amica.com",1);
insert into fiTbl (fi_kind,name,url,dt) values ("insurer","Berkshire Hathaway","https://berkshirehathaway.com",1); insert into fiTbl (fi_kind,name,url,dt) values ("insurer","Berkshire Hathaway","https://berkshirehathaway.com",1);
@ -148,7 +150,7 @@ insert into fiTbl (fi_kind,name,url,alec,dt,notes) values ("insur
insert into fiTbl (fi_kind,name,url,dt) values ("insurer","First American Insurance Agency","https://www.faiagency.com",1); insert into fiTbl (fi_kind,name,url,dt) values ("insurer","First American Insurance Agency","https://www.faiagency.com",1);
insert into fiTbl (fi_kind,name,url,parent,dt) values ("insurer","Foremost","http://www.foremost.com","Farmers",1); insert into fiTbl (fi_kind,name,url,parent,dt) values ("insurer","Foremost","http://www.foremost.com","Farmers",1);
insert into fiTbl (fi_kind,name,url,alec,dt,notes) values ("insurer","Geico","https://www.geico.com",1,1,"akamai hosted but transactional site ecams.geico.com is not."); insert into fiTbl (fi_kind,name,url,alec,dt,notes) values ("insurer","Geico","https://www.geico.com",1,1,"akamai hosted but transactional site ecams.geico.com is not.");
insert into fiTbl (fi_kind,name,url,parent,notes) values ("insurer","Gen Re","https://www.genre.com","Berkshire Hathaway","akamai hosted, but transactional site www.genre-connect.com is not."); insert into fiTbl (fi_kind,name,url,parent,notes) values ("insurer","Gen Re","https://www.genre.com","Berkshire Hathaway","akamai hosted, but transactional site www.genre-connect.com is not. The documentation (""Knowledge"" link) is CloudFlared.");
insert into fiTbl (fi_kind,name,url,dt,notes) values ("insurer","National General","https://www.nationalgeneral.com",1,"formerly GMAC"); insert into fiTbl (fi_kind,name,url,dt,notes) values ("insurer","National General","https://www.nationalgeneral.com",1,"formerly GMAC");
insert into fiTbl (fi_kind,name,url,dt) values ("insurer","Grange Mutual","https://www.grangeinsurance.com",1); insert into fiTbl (fi_kind,name,url,dt) values ("insurer","Grange Mutual","https://www.grangeinsurance.com",1);
insert into fiTbl (fi_kind,name,url,parent) values ("insurer","Harleysville Group","https://www.harleysvillegroup.com","Nationwide"); insert into fiTbl (fi_kind,name,url,parent) values ("insurer","Harleysville Group","https://www.harleysvillegroup.com","Nationwide");
@ -165,7 +167,7 @@ insert into fiTbl (fi_kind,name,url,antitor,dt) values ("insur
insert into fiTbl (fi_kind,name,url,antitor,notes) values ("insurer","Safe Auto","http://www.safeauto.com",1,"**Tor-hostile** sign-in page despite Tor-friendly landing page."); insert into fiTbl (fi_kind,name,url,antitor,notes) values ("insurer","Safe Auto","http://www.safeauto.com",1,"**Tor-hostile** sign-in page despite Tor-friendly landing page.");
insert into fiTbl (fi_kind,name,url,parent,antitor,notes) values ("insurer","Safeco","https://safeco.com","Liberty Mutual",1,"akamai hosted"); insert into fiTbl (fi_kind,name,url,parent,antitor,notes) values ("insurer","Safeco","https://safeco.com","Liberty Mutual",1,"akamai hosted");
insert into fiTbl (fi_kind,name,url,dt,notes) values ("insurer","Selective","https://www.selective.com",1,"pushes CloudFlare javascript, but apparently execution is optional."); insert into fiTbl (fi_kind,name,url,dt,notes) values ("insurer","Selective","https://www.selective.com",1,"pushes CloudFlare javascript, but apparently execution is optional.");
insert into fiTbl (fi_kind,name,url,dt) values ("insurer","Shelter Insurance","https://shelterinsurance.com",1); insert into fiTbl (fi_kind,name,url,dt,notes) values ("insurer","Shelter Insurance","https://web.archive.org/web/shelterinsurance.com",1,"CloudFlare name server is used, which means they can trivially flip a switch to become a CF site.");
insert into fiTbl (fi_kind,name,url,antitor,alec,cispa,dt,notes) values ("insurer","State Farm","https://www.statefarm.com",1,1,1,1,"edgecast-hosted"); insert into fiTbl (fi_kind,name,url,antitor,alec,cispa,dt,notes) values ("insurer","State Farm","https://www.statefarm.com",1,1,1,1,"edgecast-hosted");
insert into fiTbl (fi_kind,name,url,aws,dt) values ("insurer","Stewart Information Services Corporation","https://www.stewart.com/en.html",1,1); insert into fiTbl (fi_kind,name,url,aws,dt) values ("insurer","Stewart Information Services Corporation","https://www.stewart.com/en.html",1,1);
insert into fiTbl (fi_kind,name,url) values ("insurer","The General","https://thegeneral.com"); insert into fiTbl (fi_kind,name,url) values ("insurer","The General","https://thegeneral.com");
@ -376,7 +378,7 @@ EOF
cat <<'EOF' cat <<'EOF'
# Why CISPA supporters are graylisted # Why CISPA supporters are graylisted
The [Cyber Intelligence Sharing and Protection Act](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act) The [Cyber Intelligence Sharing and Protection Act (CISPA)](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act)
was a bill to bypass the 4th amendment to promote a system of unwarranted was a bill to bypass the 4th amendment to promote a system of unwarranted
mass surveillance through information sharing between the government and private sector. mass surveillance through information sharing between the government and private sector.
Congress blocked the bill, but it was later reincarnated as CISA and it passed. Congress blocked the bill, but it was later reincarnated as CISA and it passed.
@ -419,7 +421,7 @@ In the end, you're the judge.
Financial institutions hosted on GAFAM (Google Amazon Facebook Apple Microsoft) are graylisted. Financial institutions hosted on GAFAM (Google Amazon Facebook Apple Microsoft) are graylisted.
The wrongdoing is indirect and in the end taking a security risk doesn't necessarily lead to a breach. The wrongdoing is indirect and in the end taking a security risk doesn't necessarily lead to a breach.
Of course it's still favorable to choose a whitelisted financial institution. Of course it's still ethically favorable to choose a whitelisted financial institution if possible.
EOF EOF
};#gen_md };#gen_md

10
usa_insurance_companies.md
View File

@ -11,17 +11,16 @@
| *insurer* | *ALEC member* | *Tor-hostile* | *sensitive info exposed to CloudFlare* | *supported CISPA* | *forced drug testing of staff* | *notes* | | *insurer* | *ALEC member* | *Tor-hostile* | *sensitive info exposed to CloudFlare* | *supported CISPA* | *forced drug testing of staff* | *notes* |
|---|---|---|---|---|---|---| |---|---|---|---|---|---|---|
|[Allianz](https://allianz.com)|n|n|n|🕵|🧪|**Amazon AWS-hosted**| |[Allianz](https://allianz.com)|n|n|n|🕵|🧪|**Amazon AWS-hosted**|
|[American Modern](https://www.amig.com)|n|n|n|n|n|**Google Cloud-hosted**|
|[Ameriprise Financial](https://www.ameriprise.com)|n|n|n|🕵|🧪|akamai hosted| |[Ameriprise Financial](https://www.ameriprise.com)|n|n|n|🕵|🧪|akamai hosted|
|[Berkshire Hathaway](https://berkshirehathaway.com)|n|n|n|n|🧪|| |[Berkshire Hathaway](https://berkshirehathaway.com)|n|n|n|n|🧪||
|[First American Insurance Agency](https://www.faiagency.com)|n|n|n|n|🧪|| |[First American Insurance Agency](https://www.faiagency.com)|n|n|n|n|🧪||
|[Gen Re](https://www.genre.com)|n|n|n|n|n|parent: Berkshire Hathaway; akamai hosted, but transactional site www.genre-connect.com is not.| |[Gen Re](https://www.genre.com)|n|n|n|n|n|parent: Berkshire Hathaway; akamai hosted, but transactional site www.genre-connect.com is not. The documentation ("Knowledge" link) is CloudFlared.|
|[Grange Mutual](https://www.grangeinsurance.com)|n|n|n|n|🧪|| |[Grange Mutual](https://www.grangeinsurance.com)|n|n|n|n|🧪||
|Horace Mann|n|n|n|n|🧪|no website, only an access-restricted Facebook page| |Horace Mann|n|n|n|n|🧪|no website, only an access-restricted Facebook page|
|[MetLife](https://www.metlife.com)|n|n|n|🕵|🧪|**Amazon AWS-hosted**; transactional site identity.metlife.com is not AWS| |[MetLife](https://www.metlife.com)|n|n|n|🕵|🧪|**Amazon AWS-hosted**; transactional site identity.metlife.com is not AWS|
|[National General](https://www.nationalgeneral.com)|n|n|n|n|🧪|formerly GMAC| |[National General](https://www.nationalgeneral.com)|n|n|n|n|🧪|formerly GMAC|
|[Selective](https://www.selective.com)|n|n|n|n|🧪|pushes CloudFlare javascript, but apparently execution is optional.| |[Selective](https://www.selective.com)|n|n|n|n|🧪|pushes CloudFlare javascript, but apparently execution is optional.|
|[Shelter Insurance](https://shelterinsurance.com)|n|n|n|n|🧪|| |[Shelter Insurance](https://web.archive.org/web/shelterinsurance.com)|n|n|n|n|🧪|CloudFlare name server is used, which means they can trivially flip a switch to become a CF site.|
|[Stewart Information Services Corporation](https://www.stewart.com/en.html)|n|n|n|n|🧪|**Amazon AWS-hosted**| |[Stewart Information Services Corporation](https://www.stewart.com/en.html)|n|n|n|n|🧪|**Amazon AWS-hosted**|
|[Travelers](https://www.travelers.com)|n|n|n|🕵|🧪|akamai hosted| |[Travelers](https://www.travelers.com)|n|n|n|🕵|🧪|akamai hosted|
@ -31,6 +30,7 @@
|21st Century|n|n|n|n|n|parent: Farmers| |21st Century|n|n|n|n|n|parent: Farmers|
|Allied|n|👁|n|🕵|🧪|**Amazon AWS-hosted**| |Allied|n|👁|n|🕵|🧪|**Amazon AWS-hosted**|
|Allstate|n|👁|n|🕵|🧪|akamai hosted| |Allstate|n|👁|n|🕵|🧪|akamai hosted|
|American Modern|n|n|🌩|n|n|**Google Cloud-hosted** landing page, which is CloudFlare-free but the transactional host my.doculivery.com is CFd|
|Amica|n|👁|n|n|n|| |Amica|n|👁|n|n|n||
|Brown & Brown Insurance|n|n|🌩|🕵|n|| |Brown & Brown Insurance|n|n|🌩|🕵|n||
|Esurance|n|n|n|n|n|parent: Allstate; akamai hosted| |Esurance|n|n|n|n|n|parent: Allstate; akamai hosted|
@ -167,7 +167,7 @@ The storm cloud (🌩) indicates that account access is resticted and exclusive
# Why CISPA supporters are graylisted # Why CISPA supporters are graylisted
The [Cyber Intelligence Sharing and Protection Act](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act) The [Cyber Intelligence Sharing and Protection Act (CISPA)](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act)
was a bill to bypass the 4th amendment to promote a system of unwarranted was a bill to bypass the 4th amendment to promote a system of unwarranted
mass surveillance through information sharing between the government and private sector. mass surveillance through information sharing between the government and private sector.
Congress blocked the bill, but it was later reincarnated as CISA and it passed. Congress blocked the bill, but it was later reincarnated as CISA and it passed.
@ -210,4 +210,4 @@ In the end, you're the judge.
Financial institutions hosted on GAFAM (Google Amazon Facebook Apple Microsoft) are graylisted. Financial institutions hosted on GAFAM (Google Amazon Facebook Apple Microsoft) are graylisted.
The wrongdoing is indirect and in the end taking a security risk doesn't necessarily lead to a breach. The wrongdoing is indirect and in the end taking a security risk doesn't necessarily lead to a breach.
Of course it's still favorable to choose a whitelisted financial institution. Of course it's still ethically favorable to choose a whitelisted financial institution if possible.