Is Hyperlambda a free lunch?

I hereby serve a free lunch to 99% of the world’s developers 🙂

When something seems to incredible to believe, historically it’s proven to not be true, at least most of the time. This makes most people become suspicious of claims, such as these, where I claim to have “built a pyramid”, in the fraction of the timespan needed with other software development tools. The quote “free lunch” for the record, is a reference to how some bars used to serve a free lunch for their customers, as long as their customers bought at least one beer.

Of course, that one beer, quickly turned into 5 beers, and the “free lunch” they were given, often contained a lot of salt, which made people drink even more, and the bars would earn more money, by giving away a “free lunch”, resulting in that the so-called “free lunch”, quickly became expensive for the guests – Both on their guests’ liver, and on their wallets. Hence, some of my readers have asked me whether Hyperlambda is a “free lunch”, obviously suspicious of some of my claims. Well, Hyperlambda’s primary license is GPL, with a dual license path. Which implies the following …

Free as in freedom, not as in free beer

However, there actually do exists free lunches in the software industry. Don’t believe me, then please explain Linux. Facts are, there are no other ways to explain Linux, than to use analogies such as “free lunch”. Hyperlambda was (also) created, to a large extent out of altruistic reasons, the same way Linux was created. You see, software have a lot of peculiar traits, which allows it to (sometimes) actually become, either an actual “free lunch”, or at the very least an extremely inexpensive lunch. And I created Hyperlambda with some personal goals, that had characteristics, which implies that my personal motives was to make it become a “very inexpensive lunch”. To sum these up, my goal was to de-centralise the World Wide Web.

This doesn’t imply that there aren’t tradeoffs with Hyperlambda. Even though you can build pyramids with it, there are definitely side effects you should be aware of. For instance, you (probably) shouldn’t use it to create sites with humongous demands on traffic, such as Facebook and Twitter. Although you can create social websites with Hyperlambda, and Phosphorus Five to be more specific, it wasn’t designed to solve this particular problem.

Phosphorus Five and Hyperlambda was primarily created to extremely rapidly create enterprise apps, and not to clone StackOverflow. It was created to solve the “long tail problem”. The reasons for that creating such sites, such as StackOverflow, is very difficult with P5 – Is because the cost of its (superior) development model, is that you need to preserve state on the server. Of course, this is done virtually 100% transparent, and you rarely have to think about it, but this is something you’ll need to be aware of as you use it. Which implies that if you clone StackOverflow in Hyperlambda, you’ll need 10x-100x the amount of servers, to serve the same amount of users that SO is serving.

Hyperlambda is no free lunch, bit it’s definitely dirt cheap, and mighty delicious

However, if you were to create something such as StackOverflow in Hyperlambda, you could probably (easily) do it in 10x-100x faster, than if you used the tools that “CodingHorror” and Joel Spolsky used. This would allow you to create a website, which solves the same problem as StackOverflow, and has the same feature set as SO, but not the same scalability traits that SO does.

For most people, the above example actually illustrates, what for all practical concerns happens to be an actual “free lunch” – Since 99.9% of all developers on the planet, happens to be working on problems, that does not require the scalability traits that SO requires. So is Hyperlambda a “free lunch”?

Well, for 99% of the developers in the world, Hyperlambda is an ipso facto “free lunch”. But it is not a “free beer”

If you don’t understand my “free beer” analogy, please refer to Doctor Richard Stallman’s writings about “free as in freedom”.

Sorry, I refuse to deny that I was wrong

Some days ago, I made a fool of myself. I accused WordPress of stealing my cookies, in two blogs, because I couldn’t see any other reasons for the behaviour I saw at my own home web server. It seemed to be the biggest security hole since Snowden, and I reported it to “all over the place”.

At some point an observant Reddit reader made me aware of that this was in fact expected behaviour, and a part of the RFC explaining how cookies are supposed to work. It made me feel embarrassed and stupid. The fact of that I was wrong, is further embarrassing me, due to that this is an area where I am supposed to be an “expert”. However, instead of removing the post, I edited it, and confessed my sins.

Later some few readers encouraged me to remove the blog, and simply be silent about the whole incident. Of course, this would have made me appear much less stupid, and could possibly have saved my “honour”, at least in the public space. However, I refused to do that, and chose to let the article stay as it was, and chose to edit it instead, admitting how stupid I was.

There’s a lot of things that are wrong with this world. However, when we as humans add to this, and we later try to hide the fact that we were wrong, this simply creates further grief.

Two wrongs never make a right, so therefor I refuse to commit two wrongs, by denying that I was wrong

I was wrong, I jumped to conclusions, and in doing so I made accusations that was not right. If admitting this makes me more stupid, so be it, I’d rather feel stupid for a while, than spend the rest of my life trying to hide how stupid I was …

Dear WordPress, I made false accusations, and I was wrong. I am sorry for that, and I apologise. Hope we still can be friends 🙂

Julian Assange says he’s a homosexual

What is the value of social media such as Reddit.com, Facebook and Twitter, when people only read the headlines, and then chooses to up vote or down vote, according to their pre-existing belief system?

This blog is an attempt at proving my point. After I have published it, I will submit it to Reddit and Twitter, to check out how many people actually read it, before wildly sharing it, to spread their existing belief, due to whatever reasons they might have for doing such a thing. My thesis is that most people will simply choose to wildly sharing it, all over the world, simply because its header resonates with whatever they believe in the first place. Hence, it echoes their existing world view, and hence they no longer care what its content actually is, and don’t spend any time to actually read its content.

Notice for the record, I have absolutely no reasons to believe that Mr. Assange is a homosexual. I highly doubt it, and the header of the blog was simply click bait, to illustrate how shallow the world has truly become, because of social media. Hence, this article was consciously created to serve as #FakeNews …

If you encounter this article, shared on the web somewhere, please don’t comment and give away its actual message. Just let those who wants to share it, believing it confirms their existing belief, continue doing just that …

If Julian Assange was a Russian spy, could you blame him?

According to Hilary Clinton Julian Assange is a Russian spy. This is of course something that Julian Assange has denied. However, if he in fact was a spy for the Russians, could you blame him?

He’s been persecuted now for almost a decade by the ones who were supposed to be his “allies”. The same government that is claiming to be the “champions of free speech”, have been chasing the poor guy for simply speaking, for almost a decade. This implies, that if Julian Assange was a Russian spy, he has effectively been recruited into FSB, through Hilary Clinton’s actions, making him desperately seeking shelter from lies and false accusations, in whatever camp was willing to provide shelter to him, and help him win against these false accusations.

So arguably, if we were able to prove that Julian Assange was in fact a Russian spy, this would obliterate Hilary’s reputation, for having chased him into the arms of her enemies. And Julian Assange is a guy who you do not want to have as your enemy! When somebody have been hunted by their friends for a long time, at some point, they will inevitably seek shelter amongst the enemies of the ones doing the hunting. This is simple logic, and easily understood by everyone. Basically …

If Julian Assange is a spy for the Russians, then Hilary Clinton recruited him, and is arguably his handler …

Sorry Hilary, this is an argument you cannot win …

WordPress’ DNS servers are stealing my cookies

I have a lot of respect for WordPress, they’re the only organisation I have ever encountered that has never censored me among other things. However, about a week ago I discovered that they were stealing my cookies. Let me explain.

I have a home server. This server is setup with Linux/Ubuntu and Phosphorus Five. The domain I use to access this server, is hosted at WordPress.com, where I have created a subdomain “A” DNS record, which goes to my home server. A week ago I started noticing that the cookies from my WordPress account started showing up on my home server. Of course, this is “impossible”, and that was the exact quote I got from WordPress support as I confronted them with this.

This is only possible if the DNS servers I use to access my home server are cloaking as a “man in the middle”, pretending to be the endpoint for both my home server, and my WordPress website. Since this process is a two way process, this implies that WordPress have been accessing my credential cookies for my home server. To explain this for mere mortals.

WordPress have been cracking my home server, by stealing my cookies

In the video below, you can clearly see how my WordPress cookies are in fact also sent to my home server. The video is fairly long, but you only have to see the first 30 seconds of it to see the cookie theft.

This implies that you cannot trust WordPress to host your domain, and that you for security reasons should never register your domain at WordPress. Simply since WordPress will use their DNS servers as a backdoor, to gain access to whatever you’re hosting at your domain, or any of its subdomains.

Notice, if you only blog at WordPress, or simply use them to host your website, this has no implications for you, since they’ll anyway have access to everything you add to your website, since they’re hosting it for you. It only becomes relevant if you want to use your domain for additional things, besides hosting your WordPress website. However, it begs the question “if this was a mistake by WordPress, how can you trust them in other security issues?”

For the record, I have already contacted WordPress and told them about my issue. However, since they went “silent”, I decided to go public with my findings. Please notice that he admits that they’re actually doing this!

Edit; A Reddit user informed me about how a server can actually set a cookie, such that it is forwarded to all subdomains, which means that a cookie can be shared between all subdomain of said “xxx.com” domain, by adding the “path” parameter as you set the cookie. I have to admit that I actually wasn’t aware of this fact, since it makes absolutely no sense what so ever the way I see it, and in addition creates additional potential “garbage” sent over the HTTP request, increasing the size of the request in total. Anyways, for me to not being aware of this simple fact, is actually quite embarrassing. Regardless of how embarrassing this is, I actually now publicly admit a mistake. Let me repeat that, in case you didn’t get it …

I now publicly admit a mistake! In addition, within the area where I am supposed to an ‘expert’

Which I guess is in stark contrast to what others are capable of doing, and in such a way, illustrates my whole point. Hint, read my book to understand why this is important. If you can “hack” my book, you can read it for free. I’ve actually made that pretty easy for a decent hacker …

For the record, I doubt you can hack my book, without spending some hours understanding the source code for Pay2Play, and teaching yourself at least some Hyperlambda. There are tons of clues about how to do this though, both in my original YouTube video, and my latest two blogs in general. If you’re able to hack my book, please don’t give away the recipe. It’s enough to add a comment, with a quote, from some of the parts which are not available without having to pay to prove you did it.

There is also another lesson in this blog, which is that you can see how people only tend to read the headers, and maybe one or two paragraphs of the article. If you’ve come this far in your reading, don’t give it away, as you see others raging over it, and talking negatively about somebody, based upon the header of a blog. There is a point in there somewhere …

Quid pro quo …

The autobiography that WordPress and the Norwegian Secret Police broke the law to read

I have just published my autobiography. Generally, most people would probably find this fact pretty boring, if it hadn’t been for the extremely well planned out cyber attack, I found out about a week ago.

In the video below, you can see with your own eyes, how WordPress literally stole my cookies, to gain access to my server, presumably to read my autobiography. Normally I try to avoid putting forth assumptions, but since there are no other motives, for anybody out there, except the Norwegian government, to actually steal it, and in the process making themselves become guilty of violating international espionage laws – I have a lot of reasons to suspect the Norwegian government for being ultimately the guilty party in this. The alternative is that the WordPress DNS servers have been hacked by a malicious hacking organisation, which seems to be so unlikely, that it’s almost impossible to believe in …

The video below features proofs of how WordPress stole my cookies, which would allow them access to my home server. The attack started surfacing on my server, roughly a couple of days after I published my autobiography – So obviously what they were looking for, was my writings, which was hidden behind a PayPal payment of, believe it or not, €9!

They (Norwegian Secret Police and WordPress) basically made themselves become international criminals, guilty of violating international espionage laws, to avoid paying me 9EUROs! I repeat “N-I-N-E EUROS!!”

This implies, if I am right, that the Norwegian government, conspired with WordPress, to gain access to my book, and in the process made themselves become guilty in violating international espionage laws, in addition to violating international copyright laws – Which combined could, at least in theory, put them behind bars for almost a quarter of a century. And all they had to do, was to pay me €9 to gain access to my book.

If you’d like to read my book, to see what all the fuss was all about, you can find it here. For the record, you only need to watch the first 30 seconds of the above video to see my proof. The way they did this, was to poison WordPress DNS servers, and have the DNS servers cloak as the end request server, using a classic man in the middle attack, to such gain access to credential cookies, for my home server. This gave them access to my home server, by having access to my credential cookies. This is a gaping security hole, the size of Niagara, and makes WordPress ultimately guilty of being in violation of espionage laws, in every single country on the planet where anybody have ever in theory, loaded as much as a simple website from WordPress.com. And since WordPress is one of the largest websites on the planet in bandwidth consumption, well, you get the point …

WordPress basically broke into my home server, by stealing my cookies!

Now for the record, this specific type of attack, is probably considered a “last resort type of attack”, only used when all other types of attacks have been exhausted – Simply since it’s impossible to hide, and easily detectible. This implies that they’ve probably tried to hack into Phosphorus Five, unsuccessfully, using all other types of attacks, before they resorted to cookie stealing, by cloaking the WordPress DNS servers, and in the process incriminating the entire organisation of WordPress.

Hence, arguably, the type of attack they chose, arguably proved Phosphorus Five to be impossible to penetrate, even for government organisations, collaborating with organisations such as the CIA and the NSA, using conventional means. Hence, the attack vector, utilising a poisonous DNS server, arguably proves that Phosphorus Five is really, really, really difficult to hack, with conventional means. Either that, or that the Norwegian Secret police are complete morons, incapable of penetrating a simple €500 Linux box. You choose …

Now, a DNS “A” record, such as the one pointing to my home server, is supposed to do one thing, and only one thing. This one thing, is to return the IP address of the endpoint, back to the client requesting the page. However, WordPress’ DNS servers, obviously was able to somehow pretend that they were the endpoint, both for my home server, and my WordPress blog. In doing so, the cookies for both my home server, and my WordPress blog, were shared between both endpoints. In the above video, you can clearly see with your own eyes, how my WordPress cookies are sent to my home server. Which proves that WordPress now have access to my personal home server cookies, since this is a two-way mechanism.

The way I discovered this, was because I actually had downloaded PayPal’s JavaScript file locally on my own server. This file created additional cookies, which in combination with the cookies from WordPress, and my own server’s cookies, become too much for Google Chrome – So Chrome started dropping cookies, and I started getting thrown out of my own server, because my session cookie was dropped, every single time I visited a page with a PayPal button included on it. This made me start looking harder for errors, and all of a sudden, I discovered that my WordPress account’s cookies, were being sent to my private home server.

According to support at WordPress, this is quote “impossible”, and I was told to submit a security report to HackerOne.com. I submitted a security report over at HackerOne.com, and some guy told me he’d look into it, but then went silent, and stopped answering me. At some point I realised this had to be “by design”, and that it incriminated the entirety of the management of WordPress (from where I am publishing this blog), and hence made them guilty of breaking espionage laws, in every single country, a single webpage from WordPress.com have ever been served from – So I decided to go public with my findings.

Normally, when you find security holes in IT, you’re expected to warn the vendor of the software, and wait 30 days before you publish your findings. Since this attack is obviously “by design”, warning WordPress, and giving them 30 days before going public – Would be the equivalent of “warning a criminal that you’re going to go to the police 30 days before you tell the police”. So I see no reasons to neither warn them, nor to wait for 30 days. The management of WordPress are as of this day, guilty in violating espionage laws, on every single country on the planet. Including their home country of USA/California.

Arguably, this is among the largest security breaches the internet has seen, possibly since the Edward Snowden revelations – And the proof can be seen for yourself, in the above YouTube video …

Yet again, you only need to see the first 30 seconds of the above video to see my proof …

Edit …

Old is the new new

If you believe in conventional archeology’s explanation of how the pyramids were built, you’ll have to believe that 5,000 years ago, people with nothing but chisel and stones, were able to put down one 20,000 kilogram heavy stone, every 2.5 minutes, for 20 years, 24 hours a day, 7 days a week. The logistical and organisational miracle of such an achievement is hard to believe in for most for obvious reasons. It wasn’t before in the late 1800s, almost 5,000 years later, that humanity was able to create a building that was taller. I am talking about the Eiffel tower of course.

The above implies that the ancient Egyptians created an “assembly line” for constructing their pyramids, impossible to fathom and explain, even for modern science.

In the 1950s Lisp was invented. Lisp is a programming language for computers. Everybody that knows anything about it, perceives it as far superior to anything humanity has ever done with their computers ever since. 60+ years of innovation, from millions of our best minds, still today nobody have been able to even come close to its brilliance.

Was the architect behind Lisp, and the creators of the pyramids supernatural beings, with miracles at their fingertips …?

I can’t answer the above. However, I can testify towards that constantly chasing the “new thing” is probably not going to bring you far, unless you’re able to bring with you the teachings of history as you dive into the future. The reasons why I can confidently say such a thing, is because I too have done things impossible to fathom for other people. I have created a software development framework, which features many of the same “impossible to fathom traits” of the pyramids. However, instead of bragging, I will simply show you, such that you can see with your own eyes.

In March of 2017 I set out to prove how “old is the new new”, and I started creating Sephia Five. Sephia Five is a webmail client, with PGP cryptography support, and tons of other goodies. Below is a screenshot of it.


During these 6 months, I have also created Sulphur Five. Sulphur Five is a web based file sharing system, that allows you to securely share your files. Below is a screenshot of it.

In addition to these projects, I have also created Peeples, the user management module for Phosphorus Five.

I have also created Camphora Five. Which is a CRUD app generator for P5.

In addition, I am currently working with (unfinished) a publishing system for books, called Pay2Play.

Below is the AppStore I built in the same period, that allows to install apps on your server, without even having to restart the web server process. It features integrated PayPal payments, and automatic updates, in addition to securely download cryptographically signed zip files, to avoid man in the middle attacks, injecting malicious code on your server.

The Harvester is also something I have been working at. In addition to Hyperbuild, which is a build system for P5 apps. On top of this, I have also created a CSS Framework called Micro, and fixed lots of bugs and features in the core called Phosphorus Five. In this same period, I have taught myself to play the saxophone (watch the video below)

And I’ve spent dozens of days on the beach where I live. And …

I did it in 6 months!!

If we move a little bit backwards in time, I have singlehandedly created a programming language, a web operating system, an entire application suite, covering most of the basic enterprise needs for most companies, a CSS framework, an Ajax library, dozens of other satellite projects, such as a PGP/MIME wrapper library, I have written hundreds, if not thousands of blogs and articles, including some of the most read articles at MSDN Magazine.

Am I a miracle worker …?

Regardless of what I say, you’ll probably believe what you want to believe. However, I’d like to say it such that I have simply learned by history, and instead of constantly chasing “the new thing”, I have dissected the teachings of our past, and made sure I was able to learn from the brilliance of our “ancient technologies”. For instance, I like to compare Phosphorus Five to FoxPro. FoxPro is one of those ancient technologies in IT which most system developers today are laughing at, and making fun of, because it’s “not new”, and arguably built with “stone-age technology”. Well …

I build a pyramid, singlehandedly, in at best a couple of years, with my own two hands, without any help at all. How do you explain that …?

Facts are, don’t be so arrogant towards the past. The past holds many lessons for us, which if we’re able to incorporate into the future, might make our future just a little bit brighter and more beautiful. Phosphorus Five is built on “ancient technology”, it features ASP.NET WebForms for instance. It has no OOP, and hence arguably is inspired by programming languages more than 60 years old. It doesn’t incorporate any of the “new and hot stuff”, etc, etc, etc. Many of our industry titans takes a look at P5, and they laugh silently, since it’s “hopelessly outdated”, or at least built on “hopelessly dated technologies”. OK, let’s agree with those doing the laughing as a thought experiment, which of course leaves us with them having to explain the following.

I built a pyramid with stones and chisels, 10,000x faster than any living or dead man on the planet has been able to produce software. How do you explain that …?

Either you’re going to have to accept that I am a miracle worker, and that I have divine powers. Or you’re going to have to accept that there “is something brilliant” with Phosphorus Five

How Twitter, Facebook and YouTube destroyed my life

There are many ways to read my life’s story. One of its edges, is that I had my life destroyed completely by Twitter, Facebook and YouTube. Since my story is like an angry chewing gum, impossible to get out of my hair, I have chosen to simply tell it myself, such that you can read it how I saw it.

In case you want to read the weirdest autobiography ever written, you can go check it out here. In fact, to make sure I am able to avoid having censorship killing it once again, I created my own tool to allow it to be published. If you’ve got a good book inside of you, and you want to write it, publish it, and sell it for money – Feel free to use my tool to do just that. It’s not entirely stable yet, and has some quirks here and there, but it should start coming together hopefully soon …

If you get in trouble as you read it, shoot me an email at thomas@gaiasoul.com and I’ll fix it for you … 🙂

One password to rule em’ all

If you’re anything like the average computer literate, you’ve probably got dozens of different passwords laying around. One for Google, another for Facebook, and so on. OpenID was supposed to fix this. Unfortunately it was basically more or less ignored by the industry, since everyone wanted to create their own bastardised version of it instead. For instance, on many websites you can login using your Facebook account. The problem with this is two-folded though.

  1. Do you trust Facebook to have access to the rest of your life?
  2. What do you do if Zuckerberg decides to throw you out?

The above are real tangible problems, believe me, I am thrown out of Facebook myself, so I can easily testify to this simple fact! However, the alternative is walking around trying to remember dozens of different passwords, one for each different aspect of your life. Or is it …?

Phosphorus Five is a web operating system, with a single password turn-key solution

With Phosphorus Five though, you only need to remember a single password. This makes it easier for you to create a rock solid password, since you don’t have to remember 55 different passwords for one. In addition, it allows you to change the password for your email client, file sharing system, etc, etc, etc – With a single change of locks!

This aspect of Phosphorus Five cannot be emphasised enough.

Can you communicate with your computer?

I don’t mean silly speech recognition or speech synthesis for the record – I literally mean communicate. For instance, can you communicate your ideas and intentions to your computer, and have it communicate its ideas back to you?

The reason why I ask, is because that’s arguably what makes us humans human. Even the Bible refers to this in John 1:1, arguably – Implying that, I can find any English speaking person on the planet, and we can have a dialogues with each other, bounce ideas to each other, have the other party semantically understand what we’re talking about, and then reverse the process, allowing the other party to inject ideas into our minds. This is at the foundation of of what we often refer to as “communication”.

Below you can find a piece of Hyperlambda. Traditionally, there have only existed two distinct different types of programming languages; Interpreted languages and compiled languages. Both of these have the same traits though, which is that the computer does not in fact understand these languages. They both need to be transformed into something else, before the computer can understand what we as humans are trying to communicate to it. Hyperlambda is in neither of these categories.

create-widget:foo
  element:button
  innerValue:Click me ...
  onclick
    set-widget-property:foo
      innerValue:I was clicked!

Hyperlambda at its core in fact, is not a programming language. It is simply a tree structure. Such tree structures, or “graph objects” to use the technical term – Just so happens to allow us to describe what I often refer to as “execution trees”. Execution trees are piece of logic, which a computer can understand directly, without having to “interpret” or “compile” it into something else. You can read more about this  in my MSDN Article about Hyperlambda.

This simple trait of Hyperlambda, literally means that your computer can understand it, without any interpretation process or compilation process occurring in between your code, and its understanding of it. This happens to create another highly interesting side-effect, which is that your computer can actually communicate its ideas back to you, in the form of Hyperlambda.

Hyperlambda hence becomes a common communication platform for computers and humans, and the first of its kind actually!