From 7466951af7b3ec98fc6c683e427cbc77c876f99a Mon Sep 17 00:00:00 2001
From: Scott Ullrich <sullrich@pfsense.org>
Date: Sat, 14 Nov 2009 14:59:32 -0500
Subject: Disallow blank passwords

---
 etc/inc/auth.inc | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/etc/inc/auth.inc b/etc/inc/auth.inc
index 9f80965..387f17c 100644
--- a/etc/inc/auth.inc
+++ b/etc/inc/auth.inc
@@ -103,11 +103,11 @@ function htpasswd_backed_basic_auth() {
 			}
 
 			// Disallow blank usernames
-			if (!isset($HTTP_SERVER_VARS['AUTH_USER']))
+			if (!$HTTP_SERVER_VARS['AUTH_USER'])
 				continue;
 
 			// Disallow blank passwords
-			if(!isset($HTTP_SERVER_VARS['AUTH_PW'])) 
+			if(!$HTTP_SERVER_VARS['AUTH_PW']) 
 				continue;
 
 			/* Check to see if user even exists */
-- 
cgit v1.1