Adobe Experience Manager Sites & More

Hello, 

our site works fine with custom 404 pages served from our language directories where the error page is displayed properly and the status returned is a 404 on the initial page hit at the specific URL in question.   If, however, we hit the root of the site with an invalid link the custom error page is displayed, however viewing the network tab in a browser it first does a 301 redirect before hitting the custom error at /en-us/error/404 (so the URL does end up changing).  

Looking into this, I found that I could get the correct behavior by editing our dispatcher configuration farm file by changing 

the first line in our filter section (1001) from deny to allow.  

/filter {
# Deny everything first and then allow specific entries
/1001 { /type "deny" /glob "*" }
/1002 { /type "allow" /url "/en-us*" }
/1003 { /type "allow" /url "/de-de*" }
/1004 { /type "allow" /url "/fr-fr*" }
/1005 { /type "allow" /url "/it-it*" }
/1006 { /type "allow" /url "/ja-jp*" }
/1007 { /type "allow" /url "/ko-kr*" }

...

We do not want to allow everything by default as this seems to be a security risk, however, we were wondering 

if it is possible to get the 404 to function similar to the language paths with a less permissible rule. 

As a side note, I noticed several large sites that are running AEM (Intel, McDonalds, Cisco) seem to have the same issue with their sites when having a 404 at the root of the site.  I'm not sure if this is just a known/accepted issue with the way the dispatcher works or if there are sites that have solved this.

Thank you,