During USER/PASS authentication behaviour for invalid username and password is different.
vulners.com/securityvulns/securityvulns:doc:4712