Passwords should not be logged in plaintext.

Currently, in `login_prompt_handler.go` there is a call to `mudlog.Debug` which ends up logging a user's password in plaintext. Perhaps this should respect the `MaskInput` and `MaskTemplate` values?