By default we want to allow everybody access to all the information wants to be free, right? If you disagree with this philosophy you may want to lock down your site to not serve up the /server_info endpoint. That endpoint has all kinds of interesting information that attackers may want to use against you. There are a few options on that endpoint like: http://myserver:5000/server_info?query=logger If you need to learn more about the interface try a wildcard.