Re: [mod-security-users] request body: Multipart: invalid boundary encountered
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] request body: Multipart: invalid boundary encountered
|
From: Ivan R. <iva...@gm...> - 2006-04-22 20:27:08
|
On 4/22/06, peter pilsl <pi...@go...> wrote: > > Is there a rule where I can disable this check for mod-security? Or a > small source-hack that allows further examination of the problem? No, to both. But you can try to disable request body buffering using something like (untested): SetEnvIfNoCase User-Agent "Mac_PowerPC" \ "MODSEC_NOPOSTBUFFERING=3DSkip request body processing for buggy clients" It's not a trivial issue - multipart parsing is a very sensitive area. That's why I have hesitated to allow for invalid implementations (even with a switch). The consequences of such actions are often difficult to foresee. > I dont think that mod_security is completely incompatible with MSIE 5.x > on Apple when it comes to multipart-encoding !? Could be. I don't have access to check for myself. -- Ivan Ristic, Technical Director Thinking Stone, http://www.thinkingstone.com ModSecurity: Open source Web Application Firewall |
