From a152a35819103a4871466f26d5694c5fca2bb6fd Mon Sep 17 00:00:00 2001
From: Art Cancro <ajc@citadel.org>
Date: Fri, 27 Jan 2006 02:31:51 +0000
Subject: [PATCH] * Reject empty username for login attempts

---
 citadel/ChangeLog  | 3 +++
 citadel/user_ops.c | 4 ++++
 2 files changed, 7 insertions(+)

diff --git a/citadel/ChangeLog b/citadel/ChangeLog
index 9a6b3d6b7..cd9e107f0 100644
--- a/citadel/ChangeLog
+++ b/citadel/ChangeLog
@@ -1,5 +1,8 @@
 $Id$
 
+Thu Jan 26 21:31:22 EST 2006 ajc
+* Reject empty username for login attempts
+
 Thu Jan 26 15:38:20 EST 2006 ajc
 * Allow client to supply EID in "notes" rooms.
 
diff --git a/citadel/user_ops.c b/citadel/user_ops.c
index 49c0c10f1..39cd139de 100644
--- a/citadel/user_ops.c
+++ b/citadel/user_ops.c
@@ -355,6 +355,10 @@ int CtdlLoginExistingUser(char *trythisname)
 	safestrncpy(username, trythisname, USERNAME_SIZE);
 	striplt(username);
 
+	if (strlen(username) == 0) {
+		return login_not_found;
+	}
+
 #ifdef ENABLE_AUTOLOGIN
 
 	/* If this is an autologin build, the only valid auth source is the
-- 
2.39.2