diff --git a/public/index.php b/public/index.php
index 3e268421a3d909d6695e1be11be9dfb2acbb0e62..c826b71c179766e7197ecbf9980bf50fab4ef5dd 100644
--- a/public/index.php
+++ b/public/index.php
@@ -1,5 +1,7 @@
 <?php
 
+$bannedUsers = array("vote","signup","cacti","video");
+
 function ip_in_range($ip, $range) {
 	if (strpos($range, '/') == false) {
 		$range .= '/32';
@@ -22,12 +24,16 @@ if (!ip_in_range($ipAddr, "137.44.10.128/25")){
 }
 
 if(isset($_REQUEST['username'])) {
-	$username = $_REQUEST['username'];
+	$username = strtolower($_REQUEST['username']);
 }
 if(isset($_REQUEST['password'])) {
 	$password = $_REQUEST['password'];
 }
 
+if ( in_array($username,$bannedUsers) ) {
+	die("u r b&");
+}
+
 include_once("../ldap-auth.php");
 
 $isAuthd = ldapAuth($username, $password);