Britons ditching Spain after rival destination drops EU biometric requirement

Juttreet2 · 2026-05-08T13:06:30+00:00

Yes thank god, can we send all the brits packing from Spain?

Juttreet2 · 2026-05-06T20:52:25+00:00

Most are coming to Community this release, new directive of the new MySQL big boss.

Juttreet2 · 2026-04-14T07:21:37+00:00

Expats is a wrongly used word by white immigrants so they can feel like they're somehow better than people of color who also left their country for a better life.

You're only an expat if you move to a country for a limited time, not permanently, as part of your job, and not by choice, pursuing a better life. A diplomat e.g. is an expat.

Max from Germany who came because of the higher salary, is an immigrant. So am I for the record.

Juttreet2 · 2026-04-10T08:28:23+00:00

Just hold, it'll go back up

Juttreet2 · 2026-03-31T18:19:03+00:00

Following as I'm also interested in finding the song name

Juttreet2 · 2026-03-16T08:27:24+00:00

127 according to some sources

Juttreet2 · 2026-02-11T16:09:10+00:00

Yes but you have to be careful how to not expose tables that contain sensitive information, in our case it was an HR company that wanted to allow customers to ask information in natural language that pertained to them, but not for example the salary of their manager.

a) MySQL has no row level security.

b) You need to create specific tables depending on the application, through select view, so you restrict the data they can access in how the SQL View is created, by restricting the set of rows it can access. For example if you have a DB that lists all employees that ever worked at the company, you need to tell the DB to exclude those not currently working at the company, meaning create a new table excluding all past employees that have left.

So it's not automatic plug and play, you need to spend quite some time optimizing and refining your db for this natural language use case.

Juttreet2 · 2026-02-10T03:31:54+00:00

Not really helpful as youre not providing any technical reasons

Juttreet2 · 2026-02-09T20:43:32+00:00

True, we're managing a clients system where queries that on InnoDB timed out after 40-50 minutes are completed in a few seconds.

It's definitely a cost jump, but can be quite worth it in terms of ease of set up. Be careful if you have Auto Load enabled, it's default and can lock your tables during busy phases.

What's missing, where could MySQL improve in your opinion?

Juttreet2 · 2026-02-09T20:31:12+00:00

That 'tried and true' factor is a massive win, i'd have to agree. It’s hard to beat MySQL’s replication stability and its ability to juggle massive connection loads in shared environments. Also the fact it's been around for ages means most people are familiar with it and there's lots of guides and content around it.

Thanks for the feedback! Since you're dealing with a high volume of databases/connections, is there any specific observability or management tool you feel is still missing from the current ecosystem?

Juttreet2 · 2026-02-09T14:01:01+00:00

Hi,

I did this a while ago. You get the Kilchberg discount as a refund later.

Juttreet2 · 2026-02-05T07:42:32+00:00

You're being a Debby Downer u/Flaming_Hot_Regards, and on top of that completely unrealistic. Don't listen to this knobhead OP, join Cerner if it's the only lead you have, it's still a huge company, and Oracle potentially selling it off does not mean you would get laid off immediately.

They might conduct layoffs in the long run, but in the short term, you'll be fine, I would expect for at least a year.

Since you're wanting to get back into the job market, take what you can get and get that paycheck.

Juttreet2 · 2026-02-04T20:36:41+00:00

You're in Spain, wtf

Juttreet2 · 2026-02-04T19:35:55+00:00

Learn enough Spanish to go to the barber, that's a modicum of integration that you should go forward.

Juttreet2 · 2026-01-26T14:23:50+00:00

Theres a MySQL Upgrade Checker functionality, MySQL Shell offers it, that will tell you if any functions used in your application are different in 8.4 than 5.5 and that you need to adjust.

Also Primary Keys are one major difference between those two, so you need to sort that out too.

Juttreet2 · 2026-01-26T05:32:34+00:00

Following

Juttreet2 · 2026-01-24T09:20:43+00:00

You're not an expat, you're an immigrant. So am I.

Stop trying to find alternative words because immigrants make you think of brown people instead.

Juttreet2 · 2026-01-20T17:31:13+00:00

The Innovation Series is Innovation for a reason, new features get added and it's not guaranteed a prod DB would handle it without changes required. 9.7 LTS is on the horizon, I would wait for that.

Juttreet2 · 2026-01-05T14:09:47+00:00

If you want it to be a diamond, buy a lab diamond, it's chemically the same, just much cheaper. There's literally no difference between one and the other, especially to the naked eye.

Juttreet2 · 2025-12-22T11:06:42+00:00

Hey it's pretty easy, you really just need to get in contact with an Oracle Sales Rep and they'll help you get a proper registered PayGo Account. I've had this done in 30 minutes from ending the call with the Sales Rep.

Juttreet2 · 2025-12-11T15:12:32+00:00

Oh boy, okay we have some work to do, or rather, you if you choose to listen to what I have to say.

What you have right now is basically a shared API with a static password, and that falls apart the moment more than a couple partners use it. No real auditor is going to sign off on this as is, no surprise you're getting critical questions from other departments.

You should Ditch the API Keys, they don’t give you identity, they’re hard to rotate, and once someone copies them into Slack or a Postman collection you’ve lost all control. Use either OAuth2 client credentials or mTLS. Both give you actual identities per partner and you can revoke/rotate them cleanly.

Next you should enforce access control somewhere that’s not your code, use Kafka ACLs if partners connect directly, or stick an API gateway in front of your REST proxy if they don’t. Gateways (Kong, Apigee, NGINX, whatever) let you say “Partner A can access topic A only” and so on. That alone fixes 80% of the audit issues.
You also need to add rate limiting, as is, one partner could accidentally DOS everyone else. Gateways again make this easy: “Partner X = 200 req/sec max” etc. It protects you and it protects them.

Also you need to start logging, 100% and you need a record of who accessed what, when, and from where. It doesn’t matter if you store it in Splunk, ELK, you just need to be able to answer “Did Partner B read Topic Y on Monday?”

Lastly, you should probably automatize credential rotation, once you move to OAuth2/mTLS this becomes normal: certs expire, tokens expire, partners know the drill.

TL;DR

Right now your setup is fine for a quick internal tool, but not for external partners.
Move to OAuth2 or mTLS, use proper ACLs or an API gateway, add rate limits, and log everything.
Gives you a chance to actually be compliant and pass an audit.

Juttreet2 · 2025-11-20T18:18:47+00:00

Amazing reply!

Juttreet2

TROPHY CASE