I just noticed the mysql client “--i-am-a-dummy” parameter in the help output (from mysql --help) This interestingly named synonym for “--safe-updates” looks like it should be set as the default on any live mysql database. The command is supposed to block updates and deletes that don’t use keys. As an example, it could be used to protect against the proverbial (but not uncommon) “dummy” entering a command like: UPDATE users SET password = PASSWORD('secret'); instead of the intended command: UPDATE users SET password = PASSWORD('secret') WHERE user_id = 521;