--- login.php.orig	2004-03-04 09:08:50.000000000 +0100
+++ login.php	2004-03-04 09:09:25.000000000 +0100
@@ -21,7 +21,7 @@
 
 	if ( BASIC_AUTH == config_get( 'login_method' ) ) {
 		$f_username = $_SERVER['REMOTE_USER'];
-		$f_password = $_SERVER['PHP_AUTH_PW'];
+		$f_password = '';
  	}
 
 	if ( auth_attempt_login( $f_username, $f_password, $f_perm_login ) ) {