* Reject empty username for login attempts

author Art Cancro <ajc@citadel.org>

Fri, 27 Jan 2006 02:31:51 +0000 (02:31 +0000)

committer Art Cancro <ajc@citadel.org>

Fri, 27 Jan 2006 02:31:51 +0000 (02:31 +0000)
author Art Cancro <ajc@citadel.org>
Fri, 27 Jan 2006 02:31:51 +0000 (02:31 +0000)
committer Art Cancro <ajc@citadel.org>
Fri, 27 Jan 2006 02:31:51 +0000 (02:31 +0000)
diff --git a/citadel/ChangeLog b/citadel/ChangeLog

index 9a6b3d6b74057d2f7614f60ca221009be432a7ef..cd9e107f004103bf5563409d0dc61a9acaed6474 100644 (file)
--- a/citadel/ChangeLog
+++ b/citadel/ChangeLog
@@ -1,5 +1,8 @@
  $Id$
  
+Thu Jan 26 21:31:22 EST 2006 ajc
+* Reject empty username for login attempts
+
  Thu Jan 26 15:38:20 EST 2006 ajc
  * Allow client to supply EID in "notes" rooms.
  
diff --git a/citadel/user_ops.c b/citadel/user_ops.c

index 49c0c10f1dde1b0e9429d2cf9ec28ea9dd374e23..39cd139de031473a197525ee1b8b25169a18f7a0 100644 (file)
--- a/citadel/user_ops.c
+++ b/citadel/user_ops.c
@@ -355,6 +355,10 @@ int CtdlLoginExistingUser(char *trythisname)
         safestrncpy(username, trythisname, USERNAME_SIZE);
         striplt(username);
  
+       if (strlen(username) == 0) {
+               return login_not_found;
+       }
+
  #ifdef ENABLE_AUTOLOGIN
  
         /* If this is an autologin build, the only valid auth source is the
author	Art Cancro <ajc@citadel.org>
	Fri, 27 Jan 2006 02:31:51 +0000 (02:31 +0000)
committer	Art Cancro <ajc@citadel.org>
	Fri, 27 Jan 2006 02:31:51 +0000 (02:31 +0000)
citadel/ChangeLog		patch \| blob \| history
citadel/user_ops.c		patch \| blob \| history