πŸ”— New security feature: Redis protected mode

At Redis boot time, if protected mode is enabled (the default) and if not AUTH password was configured and if no bind directive was used to restrict Redis to some interfaces then Redis will only accepts connections from the loopback IPv4 and IPv6 addresses.
External connections are accepted just for the time to send the client an error that makes the user aware of what is happening.

🌎 https://www.reddit.com/r/redis/comments/3zv85m/new_security_feature_redis_protected_mode/