@Scuzz Depending on the package distributor's default setting, but yes, it should default to a sensible localhost access only.
Redis is the same -- Ubuntu binds to localhost only, whereas if compiled from source, will listen on all interfaces, which is... erm... not as good.