with due respect for those more experienced than i am, i feel it's best to disable by default any remote access, along the lines of "security is mandatory" [1]. sure, the deployer of an instance is responsible for tuning security - but it's nice to help people avoid mistakes. if necessary, it could even be deferred to a major release if there's a real backwards-compatibility issue.
that being said, i am still a fledgling, and i defer to the committers' wisdom. ~ Reuben [1]: http://www.apache.org/foundation/how-it-works.html#management (below "Philosophy")
