<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<style>
<!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=EN-US link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>I rebuilt the SSL side of his experiment, working just with a
(modified) source of the tomcat server’s JSSE socket factory. Rather than
use FOAF and SPARQL inferences as the account linking mechanism, I tried out same
basic flow using an XRI proxy to resolve a webid that had the form of an
HXRI (to fit better with the openid foundation’s overall vision). Account
linking mechanism done the XRI way uses synonym testing as it basis This
contrasts with the preferences of the semweb folks who seem to use a bases of Bayesian
logic or formal reasoning.<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>The whole concept allows something little seen in practice in the
SAML2 world despite being specified: letting the users choice of “SP
affiliation name” [read webid] act as a linking point for several IDPs’
[read OP providers’] Subject names [read openid identifiers]. Leveraging
ssl to assert the webid does things better than SAML in my view - as the user
gets both to choose the link name and to use it at different RPs. This keeps
the constant power struggle of the IDP-interests vs RP-interests vs user-interests
in balance.<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>If I might comment a little, now, the balancing act of poliics
is the critical matter. I find the combination of the use of ssl handshake clientauth
(to assert the webid to the RP) and the SSL server’s (trusted) resolution
of the foaf file (with which the RP may then do the plural account
linking of several openids onto the webid) to be very natural. <o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>But let’s not delude ourselves. OpenID delegation pulls
the UCI information. Foaf+ssl uses ssl to push the UCI information. If Google
cannot bring itself to support openid delegation in practice, users may well
find themselves using the likes of foaf+ssl to introduce additional providers
who can add then add back in the UCI value, with or without the consent of the
OP.<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'>
<p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span
style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> Santosh Rajan
[mailto:santrajan@gmail.com] <br>
<b>Sent:</b> Tuesday, September 08, 2009 1:56 AM<br>
<b>To:</b> Peter Williams<br>
<b>Cc:</b> general@openid.net<br>
<b>Subject:</b> Re: [OpenID] An Ode to OpenID<o:p></o:p></span></p>
</div>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>I also got a post in private from an foaf guy, that he can
do authentication from the browser. It makes sense to me, though i don't know
much about foaf.<o:p></o:p></p>
<div>
<p class=MsoNormal><o:p> </o:p></p>
</div>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'>Please do post the same thing
here, bcos i can't understand why you did not post it for everyone. (I dont
think OPenID general, has any IP issues).<o:p></o:p></p>
<div>
<p class=MsoNormal>On Tue, Sep 8, 2009 at 2:09 PM, Santosh Rajan <<a
href="mailto:santrajan@gmail.com">santrajan@gmail.com</a>> wrote:<o:p></o:p></p>
<p class=MsoNormal>Hey Peter,<o:p></o:p></p>
<div>
<p class=MsoNormal>The article was written on June 23, and was actually meant
for the layman, also, I did not understand the ramifications completely at that
point in time.<o:p></o:p></p>
</div>
<div>
<p class=MsoNormal><o:p> </o:p></p>
</div>
<div>
<p class=MsoNormal>As I had promised in that article,that I would demonstrate
with an example in a future post. But I never got around to doing that post,
because that is when it hit me "the browser will manage your XRD". No
matter how you conduct that experiment, the browser will always be at the
center. No escaping that. And that is a whole new ball game. No discovery, no
delegation. It is all about the user. (Whatever he wants to identify himself
with).<o:p></o:p></p>
</div>
<div>
<p class=MsoNormal><o:p> </o:p></p>
</div>
<div>
<div>
<div>
<p class=MsoNormal><br>
<o:p></o:p></p>
<div>
<p class=MsoNormal>On Tue, Sep 8, 2009 at 1:53 PM, Peter Williams <<a
href="mailto:pwilliams@rapattoni.com" target="_blank">pwilliams@rapattoni.com</a>>
wrote:<o:p></o:p></p>
<p class=MsoNormal>The article makes scant reference to any federated sso -
where federated means talking to someone in a foreign security domain that you
don't control.<br>
<br>
At the same time, it does seem to validate the infocard message -invoking a
secure window manager for sensitive operations. Can we characterize chrome (in
a secure window manager) as an alternative to the Microsoft infocard support?<br>
<br>
Let's not forget that openid and infocard signalling have a shared history.<o:p></o:p></p>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'><br>
<br>
<br>
On Sep 7, 2009, at 10:11 PM, "Santosh Rajan" <<a
href="mailto:santrajan@gmail.com" target="_blank">santrajan@gmail.com</a><mailto:<a
href="mailto:santrajan@gmail.com" target="_blank">santrajan@gmail.com</a>>>
wrote:<br>
<br>
Hehe, the ode was supposed to make you laugh. I am sorry it didn't.<br>
<br>
What is actually most interesting, short of pimping my own blog, is
"federated identity in browsers".<br>
<br>
I have been working on it for a couple on months with some unbeleivable
results.<o:p></o:p></p>
</div>
<p class=MsoNormal>A few days back readwriteweb<<a
href="http://www.readwriteweb.com/archives/google_chrome_os_to_feature_single_sign-on.php"
target="_blank">http://www.readwriteweb.com/archives/google_chrome_os_to_feature_single_sign-on.php</a>>
posted about Google Single sign on in the new chrome OS. Their conclusions are
ridiculous, even though the actual result of such a move is very exciting.<o:p></o:p></p>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'><br>
The results of my experiments in "Federated Identity in
browsers" have proven that, there will be no "Discovery or
Delegation" any more. Thats right!<br>
<br>
Think about it. Your Browser would store and manage your XRD. Browser vendors
would be "KING".<br>
<br>
Thats when you realize what a bunch of idiots the XRI TC is made of.<br>
<br>
<br>
<br>
<o:p></o:p></p>
</div>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'>On Tue, Sep 8, 2009 at 6:53 AM,
Peter Williams <<mailto:<a href="mailto:pwilliams@rapattoni.com"
target="_blank">pwilliams@rapattoni.com</a>><a
href="mailto:pwilliams@rapattoni.com" target="_blank">pwilliams@rapattoni.com</a><mailto:<a
href="mailto:pwilliams@rapattoni.com" target="_blank">pwilliams@rapattoni.com</a>>>
wrote:<br>
<br>
The not particularly interesting ode video led me to your (much more
interesting) blog site, one of whose entries talked about delegation using
Opera Unite. No odes were ever found, but one odyssey did result.<br>
<br>
<br>
<o:p></o:p></p>
</div>
<p class=MsoNormal>1. I followed the instructions, and got myself a vanity
openid: <<a href="http://home.homepw.operaunite.com/a" target="_blank">http://home.homepw.operaunite.com/a</a>>
<a href="http://home.homepw.operaunite.com/a" target="_blank">http://home.homepw.operaunite.com/a</a>
that delegates to <<a href="http://homepw.myopenid.com" target="_blank">http://homepw.myopenid.com</a>>
<a href="http://homepw.myopenid.com" target="_blank">homepw.myopenid.com</a><<a
href="http://homepw.myopenid.com" target="_blank">http://homepw.myopenid.com</a>><o:p></o:p></p>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'><br>
<br>
<br>
This is cute, because it only seems to work when I'm online (since only then is
the index.html doing the delegation available to relying party sites).<br>
<br>
<br>
<o:p></o:p></p>
</div>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'>Used at Slashdot (based on
Janrain’s RPX integration, I believe), <<a
href="http://home.homepw.operaunite.com/a" target="_blank">http://home.homepw.operaunite.com/a</a>>
<a href="http://home.homepw.operaunite.com/a" target="_blank">http://home.homepw.operaunite.com/a</a>
got me to the Slashdot account linking screen. It failed at Plaxo.<br>
<br>
<br>
<br>
<br>
<o:p></o:p></p>
</div>
<p class=MsoNormal>2. So then I went to another RP, <<a
href="http://freexri.com" target="_blank">http://freexri.com</a>> <a
href="http://freexri.com" target="_blank">freexri.com</a><<a
href="http://freexri.com" target="_blank">http://freexri.com</a>> and hit
the login button (using the openid signin option). Obviously, I supplied my
shiny new vanity name from operaunite: <<a
href="http://home.homepw.operaunite.com/a" target="_blank">http://home.homepw.operaunite.com/a</a>>
<a href="http://home.homepw.operaunite.com/a" target="_blank">http://home.homepw.operaunite.com/a</a>.
Things properly pinged back to myopenid, and I authorized release of an
assertion and the null persona of attributes.<br>
<br>
<br>
<br>
3. I created myself a shiny new XRI, which is called @id*<<a
href="http://home.homepw.operaunite.com" target="_blank">http://home.homepw.operaunite.com</a>><a
href="http://home.homepw.operaunite.com" target="_blank">home.homepw.operaunite.com</a><<a
href="http://home.homepw.operaunite.com" target="_blank">http://home.homepw.operaunite.com</a>>,
using my current account which has several XRIs (you may need a new account, if
this is your first time through XRI land), providing the capcha. Thereafter, I
selected the option for the XRI that it would have an openid i-service
attached. That is: I now have @id*<<a
href="http://home.homepw.operaunite.com" target="_blank">http://home.homepw.operaunite.com</a>><a
href="http://home.homepw.operaunite.com" target="_blank">home.homepw.operaunite.com</a><<a
href="http://home.homepw.operaunite.com" target="_blank">http://home.homepw.operaunite.com</a>>
delegating to <<a href="http://home.homepw.operaunite.com/a" target="_blank">http://home.homepw.operaunite.com/a</a>>
<a href="http://home.homepw.operaunite.com/a" target="_blank">http://home.homepw.operaunite.com/a</a>
(which ...delegates to ...). If I do XRI resolution on that name, I see all
that properly reflected in the XRD markup, using local name of <<a
href="http://home.homepw.operaunite.com/a" target="_blank">http://home.homepw.operaunite.com/a</a>>
<a href="http://home.homepw.operaunite.com/a" target="_blank">http://home.homepw.operaunite.com/a</a>
(operating under the openid (not XRI) semantics of an local name since the
local name is in the SEP/link, not the XRD body).<br>
<br>
<br>
<br>
4. I logged out of the RP, fully. Logging back in to this RP (nominally to
create a synonym to next see if the polyarchical stuff really "works"
with delegation), I obviously now cited my shiny new XRI @id*<<a
href="http://home.homepw.operaunite.com" target="_blank">http://home.homepw.operaunite.com</a>><a
href="http://home.homepw.operaunite.com" target="_blank">home.homepw.operaunite.com</a><<a
href="http://home.homepw.operaunite.com" target="_blank">http://home.homepw.operaunite.com</a>>.
The myopenid page eventually showed, but wants me to solve this:<o:p></o:p></p>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'><br>
<br>
<br>
"myOpenID is not authorized to verify that
"@!B1E8.C27B.E41C.25C3!5adb.130d.2ac2.be9e" is your identifier. If it
is your identifier, you can set up myOpenID to verify it. See the help page for
more information."<br>
<br>
<br>
<o:p></o:p></p>
</div>
<p class=MsoNormal>How can I do this in my XRD? (Assume I login to the <<a
href="http://freexri.com" target="_blank">http://freexri.com</a>> <a
href="http://freexri.com" target="_blank">freexri.com</a><<a
href="http://freexri.com" target="_blank">http://freexri.com</a>> RP
locally, to get back my admin privileges, since Im operating a master XRI
account)<br>
<br>
<br>
<br>
5. Then I did the same at plaxo, for @id*<<a
href="http://home.homepw.operaunite.com" target="_blank">http://home.homepw.operaunite.com</a>><a
href="http://home.homepw.operaunite.com" target="_blank">home.homepw.operaunite.com</a><<a
href="http://home.homepw.operaunite.com" target="_blank">http://home.homepw.operaunite.com</a>><br>
<br>
<br>
<br>
This time I got<br>
<br>
<br>
<br>
"myOpenID is not authorized to verify that "<<a
href="http://home.homepw.operaunite.com/a/content/" target="_blank">http://home.homepw.operaunite.com/a/content/</a>><a
href="http://home.homepw.operaunite.com/a/content/" target="_blank">http://home.homepw.operaunite.com/a/content/</a>"
is your identifier. If it is your identifier, you can set up myOpenID to verify
it. See the help page for more information."<o:p></o:p></p>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'><br>
<br>
<br>
To solve THIS one, I think I need merely put the magic "proof" file
(that proves control over the "domain") onto the webserver under the
above path. Does this feel correct? If so, Ill add the myopenid proof file to
my file system (!).<br>
<br>
<br>
<o:p></o:p></p>
</div>
<p class=MsoNormal>6. Remembering that my XRI also has a +contact i-service
bound to it, with its own delegations built in to the HXRI variant of my XRI, I
had a look at the contact page that one gets from following 302's issued by the
<<a href="https://xri.freexri.com/@id*home.homepw.operaunite.com"
target="_blank">https://xri.freexri.com/@id*home.homepw.operaunite.com</a>> <a
href="https://xri.freexri.com/@id*home.homepw.operaunite.com" target="_blank">https://xri.freexri.com/@id*home.homepw.operaunite.com</a>.<br>
<br>
<br>
<br>
At the end of the chain, at <<a
href="http://contact.freexri.com/contact/@id*home.homepw.operaunite.com"
target="_blank">http://contact.freexri.com/contact/@id*home.homepw.operaunite.com</a>>
<a href="http://contact.freexri.com/contact/@id*home.homepw.operaunite.com"
target="_blank">http://contact.freexri.com/contact/@id*home.homepw.operaunite.com</a><o:p></o:p></p>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'><br>
<br>
<br>
We see the HTML-centric metadata:<br>
<br>
<br>
<o:p></o:p></p>
</div>
<p class=MsoNormal><link rel="openid.server" href="<<a
href="http://www.myopenid.com/server" target="_blank">http://www.myopenid.com/server</a>><a
href="http://www.myopenid.com/server" target="_blank">http://www.myopenid.com/server</a>"
/><br>
<br>
<link rel="openid2.provider" href="<<a
href="http://www.myopenid.com/server" target="_blank">http://www.myopenid.com/server</a>><a
href="http://www.myopenid.com/server" target="_blank">http://www.myopenid.com/server</a>"
/><br>
<br>
<link rel="openid.delegate" href="<<a
href="http://xri.net/http:/home.homepw.operaunite.com/a/content/"
target="_blank">http://xri.net/http://home.homepw.operaunite.com/a/content/</a>><a
href="http://xri.net/http:/home.homepw.operaunite.com/a/content/"
target="_blank">http://xri.net/http://home.homepw.operaunite.com/a/content/</a>"
/><br>
<br>
<link rel="openid2.local_id" href="<<a
href="http://xri.net/http:/home.homepw.operaunite.com/a/content/"
target="_blank">http://xri.net/http://home.homepw.operaunite.com/a/content/</a>><a
href="http://xri.net/http:/home.homepw.operaunite.com/a/content/"
target="_blank">http://xri.net/http://home.homepw.operaunite.com/a/content/</a>"
/><o:p></o:p></p>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'><br>
<br>
<br>
<br>
<br>
I find it strange that one resolution of the contact service at XRI proxy would
delegate to the synonmy resolution service at another proxy. Additionally, the form
of the local_id looks weird, but is not actually illegal, apparently.
But, let’s try it at the plaxo. anyways.<br>
<br>
<br>
<br>
After ignoring the problems with the https variant (since plaxo
doesn’t know about the freexri SSL cert domain), we got<br>
<br>
<br>
<o:p></o:p></p>
</div>
<p class=MsoNormal>myOpenID is not authorized to verify that <<a
href="http://xri.net/http:/home.homepw.operaunite.com/a/content/"
target="_blank">http://xri.net/http://home.homepw.operaunite.com/a/content/</a>>
<a href="http://xri.net/http:/home.homepw.operaunite.com/a/content/"
target="_blank">http://xri.net/http://home.homepw.operaunite.com/a/content/</a>
is your identifier. If it is your identifier, you can set up myOpenID to verify
it. See the help page<<a href="https://www.myopenid.com/help#own_domain"
target="_blank">https://www.myopenid.com/help#own_domain</a>> for more
information.<o:p></o:p></p>
<div>
<p class=MsoNormal><br>
<br>
<br>
Well at least that’s familiar. How do I now fiddle around with XRI/XRD or
my contact page so I can make myopenid happy?<br>
<br>
<br>
<br>
<br>
<br>
7 I find it strange that Slashdot could get myopenid to assert for my opera
delegation uri but myopenid will not react to more advanced cases.<br>
<br>
<br>
<br>
There seems to be a distinction being drawn, between delegation and delegation
for domains. The former is detected and myopenid finds it acceptable to make an
assertion, but the latter cases require additional proof over control of the
domain/URL.<br>
<br>
<br>
<br>
I wish the spec was clear on all this!<br>
<br>
<br>
<br>
-----Original Message-----<o:p></o:p></p>
</div>
<div>
<p class=MsoNormal>From: <mailto:<a
href="mailto:openid-general-bounces@lists.openid.net" target="_blank">openid-general-bounces@lists.openid.net</a>>
<a href="mailto:openid-general-bounces@lists.openid.net" target="_blank">openid-general-bounces@lists.openid.net</a><mailto:<a
href="mailto:openid-general-bounces@lists.openid.net" target="_blank">openid-general-bounces@lists.openid.net</a>>
[mailto:<mailto:<a href="mailto:openid-general-bounces@lists.openid.net"
target="_blank">openid-general-bounces@lists.openid.net</a>><a
href="mailto:openid-general-bounces@lists.openid.net" target="_blank">openid-general-bounces@lists.openid.net</a><mailto:<a
href="mailto:openid-general-bounces@lists.openid.net" target="_blank">openid-general-bounces@lists.openid.net</a>>]
On Behalf Of Santosh Rajan<br>
Sent: Monday, September 07, 2009 12:13 PM<o:p></o:p></p>
</div>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'>To: <mailto:<a
href="mailto:general@openid.net" target="_blank">general@openid.net</a>> <a
href="mailto:general@openid.net" target="_blank">general@openid.net</a><mailto:<a
href="mailto:general@openid.net" target="_blank">general@openid.net</a>><br>
Subject: [OpenID] An Ode to OpenID<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<o:p></o:p></p>
</div>
<p class=MsoNormal style='margin-bottom:12.0pt'><<a
href="http://www.youtube.com/watch?v=ztc4V3ttlso&feature=related"
target="_blank">http://www.youtube.com/watch?v=ztc4V3ttlso&feature=related</a>><a
href="http://www.youtube.com/watch?v=ztc4V3ttlso&feature=related"
target="_blank">http://www.youtube.com/watch?v=ztc4V3ttlso&feature=related</a><br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
-----<br>
<br>
<br>
<br>
Santosh Rajan<br>
<br>
<<a href="http://santrajan.blogspot.com" target="_blank">http://santrajan.blogspot.com</a>><a
href="http://santrajan.blogspot.com" target="_blank">http://santrajan.blogspot.com</a>
<<a href="http://santrajan.blogspot.com" target="_blank">http://santrajan.blogspot.com</a>>
<a href="http://santrajan.blogspot.com" target="_blank">http://santrajan.blogspot.com</a><br>
<br>
--<br>
<br>
View this message in context: <<a
href="http://www.nabble.com/An-Ode-to-OpenID-tp25335016p25335016.html"
target="_blank">http://www.nabble.com/An-Ode-to-OpenID-tp25335016p25335016.html</a>>
<a href="http://www.nabble.com/An-Ode-to-OpenID-tp25335016p25335016.html"
target="_blank">http://www.nabble.com/An-Ode-to-OpenID-tp25335016p25335016.html</a><br>
<br>
Sent from the OpenID - General mailing list archive at Nabble.com<<a
href="http://Nabble.com" target="_blank">http://Nabble.com</a>>.<br>
<br>
<br>
<br>
_______________________________________________<br>
<br>
general mailing list<br>
<br>
<mailto:<a href="mailto:general@lists.openid.net" target="_blank">general@lists.openid.net</a>><a
href="mailto:general@lists.openid.net" target="_blank">general@lists.openid.net</a><mailto:<a
href="mailto:general@lists.openid.net" target="_blank">general@lists.openid.net</a>><br>
<br>
<<a href="http://lists.openid.net/mailman/listinfo/openid-general"
target="_blank">http://lists.openid.net/mailman/listinfo/openid-general</a>><a
href="http://lists.openid.net/mailman/listinfo/openid-general" target="_blank">http://lists.openid.net/mailman/listinfo/openid-general</a><br>
<span style='color:#888888'><br>
<br>
<br>
--<br>
<<a href="http://santrajan.blogspot.com" target="_blank">http://santrajan.blogspot.com</a>><a
href="http://santrajan.blogspot.com" target="_blank">http://santrajan.blogspot.com</a><br>
<<a href="http://twitter.com/santoshrajan" target="_blank">http://twitter.com/santoshrajan</a>><a
href="http://twitter.com/santoshrajan" target="_blank">http://twitter.com/santoshrajan</a><br>
<<a href="http://www.facebook.com/santosh.rajan" target="_blank">http://www.facebook.com/santosh.rajan</a>><a
href="http://www.facebook.com/santosh.rajan" target="_blank">http://www.facebook.com/santosh.rajan</a><br>
<br>
</span><o:p></o:p></p>
</div>
<p class=MsoNormal><br>
<br clear=all>
<o:p></o:p></p>
</div>
</div>
<p class=MsoNormal>-- <o:p></o:p></p>
<div>
<p class=MsoNormal><a href="http://santrajan.blogspot.com" target="_blank">http://santrajan.blogspot.com</a><br>
<a href="http://twitter.com/santoshrajan" target="_blank">http://twitter.com/santoshrajan</a><o:p></o:p></p>
</div>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'><a
href="http://www.facebook.com/santosh.rajan" target="_blank">http://www.facebook.com/santosh.rajan</a><br>
<br>
<o:p></o:p></p>
</div>
</div>
</div>
<p class=MsoNormal style='margin-bottom:12.0pt'><br>
<br clear=all>
<br>
-- <br>
<a href="http://santrajan.blogspot.com">http://santrajan.blogspot.com</a><br>
<a href="http://twitter.com/santoshrajan">http://twitter.com/santoshrajan</a><br>
<a href="http://www.facebook.com/santosh.rajan">http://www.facebook.com/santosh.rajan</a><br>
<br>
<o:p></o:p></p>
</div>
</div>
</body>
</html>