acl defaulting to public-read might not be the best choice

[alehel]

I was wondering if there is a reason why acl defaults to public-read? Would it not be safer to default to something more restrictive such as bucket-owner-full-control, or make it a required field so that the programmer is forced to make their own decision? Having it set to public-read seems a bit risky.