Hi Ervin, Maybe the modsec engine multipart body processor is not rfc compliant and confuses the CRLF-- with a boundary delimiter instead of doing a full check as described in rfcs 7578 and 2046, try removing the dashes from the beginning and end of the gpg content and if it passes that may be the reason behind this.
To fix it you may add a rule to disable 200004 for that particular URL. But read the warnings at the documentation. File uploads are usually risky so it maybe good if you do a full check with @inspectFile for malware viruses etc Something like SecRule FILES_TMPNAMES "@inspectFile path/inspectscript" deny.. Cheers! Enviado desde mi iPhone > El 23 ago 2017, a las 17:13, Ervin Hegedüs <airw...@gmail.com> escribió: > > MULTIPART_UNMATCHED_BOUNDARY _______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
