why software should be secure by default? what if some newbie wanna try some software like redis in node? just localhost? why the newbie has to configure something to use the redis? or mongodb? or x? the real question here is why people do not secure their services in cloud?? who run that mongo? why did he or she let everything open?
And again is the security of my system a responsability of Redis/MongoDB/ETC ??? Are you sure of this??