Should you limit the access to your dev server?

Nowadays I see how web development companies have stopped limiting access to their dev servers. A few years back I remember how our boss would tell us how important it is to add robots.txt to prevent Google from indexing the website + locking the dev with .htpasswd.

Apparently everyone stopped doing that and I can go back and see the website being developed (as can other people)

Do you think it is still important to lock the dev server?