Major Performance Difference Between SQL Server Developer and Standard Edition

So experiencing an interesting performance issue. We found a query that runs in around 6 seconds in our dev environment. However, when deployed to production (same data / same hardware) it takes around 36 seconds to execute. After doing comparison and side-by-side testing (confirmed that all settings are identical) it appears that the only difference is that development is using the developer edition and production uses standard (both SQL Server 2019 fully patched).

I suspect some of the features that are available in development (i.e. Enterprise edition) are causing the performance benefit in dev but don’t know where to go from here. I am fairly confident in this because I provisioned a separate server did the test in Dev (6 seconds) and then reinstalled with Standard and it went to 37.

Any idea what feature(s) are likely causing this difference? Hoping knowing that will help me performance tune this query more (it is pretty ugly at the moment) in Standard Edition since we can’t afford Enterprise in production.

Development Execution Plan: Plan

Production Execution Plan: Plan

Thanks!

Data deleted with sqlplus still showing up in SQL Developer

I wrote a script to run with SQLPlus which deletes the previous seven days of data in my Oracle XE database. I logged into the database with SQLPlus, ran the script, and it showed me the correct rows had been deleted. I tried to query the same date range again just to make sure, and the query returned no results (i.e. the records were deleted).

However, when I then connect to the database using Oracle SQL Manager, I can go to the same table and all the data is still there! If I run the query in SQL Manager, it is then deleted from the table in SQL manager.

Anyone know why this is happening? The credentials I use to log in are the same in both instances and I’ve made sure to be logged out of SQL Manager when running SQLPlus and vice-versa. I’m running version 18c of XE database.

WordPress “developer tools” hosting, update and bundling process

Recently, we submitted a template engine plugin called Willow – which we use on our projects to the WordPress plugin repo – but it was quickly rejected – the following reasons were given:

Your plugin has been rejected because we no longer accepting frameworks, boilerplates, and libraries as stand-alone plugins.

To explain the terminology here:

Framework/Boilerplate: a template from which more code can be built
Library: requires other plugins or themes to edit themselves in order to be used

We require that plugins be useful in and of themselves (even if only being a portal to an external service). This means that a plugin should either be installed and be fully functional, or it should have some administration panel.

When a plugin requires either the plugin itself to be edited to work, or can only be used by writing code elsewhere, it ceases to have as much a benefit to end users and is more of a developer tool.

While there are many benefits to frameworks and libraries, WordPress lacks any plugin dependency support at this time, which causes a host of issues.

The parade of likely support issues include (but are not limited to):

not recognizing the need for the library or and thinking they’ve been hacked
not properly forking the boilerplate and editing it in place, resulting in updates erasing code
not recognizing the need for the library plugin, and thus deleting it (causing others to break)
updating the library plugin separately from the dependent plugins, leading to breakage
updating a dependent plugin without updating the library, leading to breakage
different plugins requiring different versions of a library plugin without proper if-exists checks

We feel that libraries should be packaged with each plugin (hopefully in a way that doesn’t conflict with other plugins using the libraries). At least until core supports plugin dependencies. Frameworks, in and of themselves, have no place in our directory as they are non-functional templates.

They offered me a chance to argue my corner and show why this plugin should be hosted – which I did to the best of my powers – I argued from standpoint that this amounted to discrimination against advanced users – who would be forced to either bundle their frameworks into other plugins, making them harder to update or that we would be forced to write hacks to get our software into the WP update process – which seems wrong on many levels.

And, while the plugins team expressed some sympathy – nothing that they all used frameworks and the likes themselves, they were unmoved by my high and might rhetoric and the plugin remains rejected…

Of course, I can continue working in the way I have been until now – currently we use the Github updater plugin to integrate our public and private repos from GitHub into the WP updater – but it IS a hack – and it’s not seemless.

So – to my question – and please moderators, don’t delete this as a "too vague / opinionated" question – as this really is aimed at understanding how other developers use WordPress and has benefit both to us and I imagine others who have faced this same situation.

The question is – how should we host our own public plugins – for example on a 3rd party repo like GitHub – and make them easily available to find, install and update – in a way that is as native as possible to how they might work if they were hosted on wordpress.org?

Sub question might be about the relative pros and cons of bundling these "frameworks" into other plugins / themes – this feels wrong to me, especially considering WordPress’s lack of dependency management – but I would like to learn if this is viable and even recommended.

Why would a scheduled job fail in SQL Developer?

I am trying to create a scheduled job in Oracle SQL Developer that would run once a month and I am testing the Scheduler/Jobs feature where I have created a simple SQL query to test the ability to do this. I have a simple table called "TEST123" and I can see that it works when I do "SELECT * FROM TEST123;".

In SQL Developer I have a Job called "TEST1" which has a PL/SQL Block = "DROP TABLE TEST123;" to run immediately (though I have also tested this with running at a specific time).

After I see that I can still select from this test table and that the STATE of the job name is "FAILED". I left all other settings as default. What am I missing here? Why is it failing and is there a way to fix it?

How do I prevent hackers that use developer apps to manipulate devices

I received a screen shot from someone that was intetionally setting me up to be hacked. The picture had some kind of hidden code that left my device venerable. Shortly after my device was completely taken over by hackers using code and developers apps. I tapped on the build number on my phone 8 times to access developer options. When I did I got a pop up saying I am already a developer. This has now been going on a long time and I have been able to narrow thinga down. I need assistance with cleaning out the device. If I restore the device it restores from an existing back up and makes it worse. Thank you

Monitoring User (developer) interaction

I’m looking for a "tamper proof" way, if there is such a thing, to monitor what a developer/engineer does on a given system.

To expand a bit more about this, we have several systems that run a Ruby on Rails technology stack with Ubuntu Docker containers on K8S, and for our PCI compliance, we require a monitoring solution that allows us to basically track what a developer/engineer does on a system from the point where an SSH session is established until the session is terminated.

Ideally, we’d like to see:

  • Loggin in
  • Any commands used in the SSH session
  • Any commands/code executed with irb or rails console
  • These logs send to Cloudwatch
  • Inability to disable this monitoring

I was originally thinking about a simple shell overwrite for the above commands to simply track every command going on, and rely on the shell history to see what has been happening, but that obviously doesn’t pass the "tamper proof" requirement, as anyone with SSH access would be able to bypass that.

I’m thinking more about some OS level monitoring to either watch the processes directly we know that will be used for working with the PCI sensitive information, or just monitor all tty trafic/interaction.

What I’m looking for is best-practises, reading material or recommendations on what’s the accepted/recommended way for setting up a system like this.

Would spam on Stack Overflow developer story increase SEO ratings for my websites? [closed]

Imagine I start creating hundreds of Stack Overflow accounts. (I am not and I do not intent to do so in reality). I add a link to my site in the personal website space on the profile. I then make the developer story (CV) public. e.g. https://stackoverflow.com/story/kamilt

If such pages are searchable on Google and they contain links to my website, is it going to help with SEO for my website? Would it get me a better rank in Google because of it?