From c199632e22ab4bcadfa5f76d34970bb0425bdbfc Mon Sep 17 00:00:00 2001
From: rswindell <>
Date: Wed, 19 Oct 2011 21:54:56 +0000
Subject: [PATCH] Fix bug where if you attempt a login via SSH or RLogin with
 an unknown user account and provide a lowercase password as part of the
 negotiation, the user account was created with the lowercase password which
 would cause problems with elements that assume all passwords are stored in
 uppercase in the user.dat file.

---
 src/sbbs3/newuser.cpp | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/sbbs3/newuser.cpp b/src/sbbs3/newuser.cpp
index cd37af55ea..efc52f79fd 100644
--- a/src/sbbs3/newuser.cpp
+++ b/src/sbbs3/newuser.cpp
@@ -368,6 +368,7 @@ BOOL sbbs_t::newuser()
 	if(rlogin_pass[0] && chkpass(rlogin_pass,&useron,true)) {
 		CRLF;
 		SAFECOPY(useron.pass, rlogin_pass);
+		strupr(useron.pass);	/* passwords are case insensitive, but assumed (in some places) to be uppercase in the user database */
 	}
 	else {
 		c=0;
-- 
GitLab