Hi,

The following rule generates false positives when uploading some .html or .txt files:

SecRule MULTIPART_UNMATCHED_BOUNDARY "!@eq 0" "phase:2,id:1800004,t:none,log,deny"

From code, it seems that these false positives are generated when the uploaded file contains a line starting with at least two consecutive '-' character. This causes modsecurity to consider it as a unmatched boundary.

Is there any way to fix it?

Thanks a lot