From c7e2ef74f8b2e6cb3614c8a626ab68f05bec9c66 Mon Sep 17 00:00:00 2001
From: Shish <shish@shishnet.org>
Date: Thu, 8 Mar 2012 04:35:52 +0000
Subject: [PATCH] if username or password are blank, exit early (saves logging
 the failed attempt)

---
 ext/user/main.php | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/ext/user/main.php b/ext/user/main.php
index 27e59e01..c926184b 100644
--- a/ext/user/main.php
+++ b/ext/user/main.php
@@ -287,6 +287,11 @@ class UserPage extends Extension {
 		$pass = $_POST['pass'];
 		$hash = md5(strtolower($name) . $pass);
 
+		if(empty($name) || empty($pass)) {
+			$this->theme->display_error(400, "Error", "Username or password left blank");
+			return;
+		}
+
 		$duser = User::by_name_and_hash($name, $hash);
 		if(!is_null($duser)) {
 			$user = $duser;