From 18579b0af2c69e948a8f212131498df67bf2f70d Mon Sep 17 00:00:00 2001
From: Tiziano Zito <opossumnano@gmail.com>
Date: Mon, 22 Sep 2025 13:25:55 +0300
Subject: [PATCH] do not leak valid usernames

---
 minimal_auth.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/minimal_auth.py b/minimal_auth.py
index 67064e5..8bdff7d 100644
--- a/minimal_auth.py
+++ b/minimal_auth.py
@@ -34,9 +34,9 @@ if len(sys.argv) > 1:
 else:
     username, password = get_credentials()
     if username not in pwdb:
-        print('Wrong username!')
+        print('Wrong username or password!')
     else:
         if authenticate(username, password, pwdb):
             print('Successfully authenticated!')
         else:
-            print('Wrong password!')
+            print('Wrong username or password!')