I came across a very weird and extremely annoying “feature” of Apache recently when configuring a clients web server. When linking to a file on the server, you could directly link to a file without specifying it’s file extension.
so linking to:
Would link directly to:
I can completely understand how useful this feature can be, and how it can help security. But I would expect a setting such as this to be defined in the .htaccess – not where I found it in the Apache Config file!!
And to cream the cake, the feature is called “MultiViews” – if you didn't know that, and didnt know where to look, you could be spending days / weeks / months trying to stop this behaviour, or change your code so that the site will function correctly.
How to disable!
All you need to do is edit your Apache Config file.
<Directory /var/www/> Options Indexes FollowSymLinks MultiViews AllowOverride All Order allow,deny allow from all </Directory>
And delete MultiViews
Now your server will act as it is SUPPOSED TO!