Data being edited in .opvn config when vpn app http gets .opvn files from my host. Adds my wordpress site code and removes the config

I have a VPN app that pulls .ovpn files from a folder on my website /home/mywebsitename/public_html/remoteovpn When I add the .opvn files to this folder and my app pulls them from https request. You can go to the files in the browser link, you can see them and read all the config no problem even dl them. But when my app pulls the files it gets the file names and makes the .opvn files, but edits the files with my website wp theme data, not the .ovpn config data. I can’t figure why it is doing this. Any help would be appreciated been trying for 2 days

VPS with CentOS 7 and cPanel with wordpress theme

add_filter( ‘the_title’ gets through this if statement twice

I am using the accepted answer shown here: Apply the_title() filter in post & page title, but not in menu title

For some reason, the code is getting through this if statement twice:

if ( ! is_admin() && $  post instanceof WP_Post && ( $  post->post_type == 'page' ) && in_the_loop() && is_main_query() ) { 

I am already using the pre_wp_nav_menu and wp_nav_menu_items filters as shown on that answer.

What would be making this code run twice please? Or how would I debug to find out what is calling it and letting it through the if twice?

(When I use debug_backtrace() is shows apply_filters line 212 in plugins.php both times but I’m not sure what to do with that info)

Sorry, I would ask as a follow-up on the posted question, but I evidently can’t comment yet.

So what do I do when a player gets bad luck at the start of the session?

As an introduction, I am a novice- ah hem, trainee GM. A pro D&D/Dungeon World player has been helping me, but I ran into a problem while running Dungeon World.

One of my players (A female Salamander Immolator) was at camp with a vampire attacking and almost all of the roles she made had a consequence with it, and I ended up having to have them rescued. It has also happened to me as a player and I am wondering how I could make the first encounter easy even when the player has bad luck?

Is there any psion variant/ACF/etc that gets Grip of Iron?

I have a character who would really like to have grip of iron, the 1st-level psychic warrior power. However, said character is a psion, specifically an egoist, not a psychic warrior, and doesn’t have a feat to spare for Expanded Knowledge.

Is there any variant, ACF, etc. that allows a psion to learn grip of iron? All 3.5e material (including 3.5e-legal 3e material) in Wizards of the Coast sources or Dragon or Dungeon magazines are acceptable. Said variant cannot touch the 1st-level bonus feat, as I am already using the variant shapeshifter egoist to get minor change shape instead of that bonus feat.

How do I deal with a player who gets offended when other players get to loot first?

I’m directing a 5e campaign and I have a party of three: A Tiefling Warlock (eloquent, rational type), a tiefling monk (rash, impulsive and danger seeking) and a half-elf rogue (his personality is not that well defined). We’re all adults: I’m 26, the warlock and the rogue are 25, and the monk is 29.

I had this devil trapped inside a magic circle, and a puzzle involving a talking severed head and riddles. As a reward for freeing him, the devil drops three rings (one blue steel, one red iron and one orange copper) to the floor and says “Pick one”, before disappearing.

The three stare at the rings, and the monk (who solved the riddle) said: “I will take the blue one first, you can get the others if they are still there.”

The warlock was silent, staring at the rings and thinking.

The rogue asked the warlock to identify the rings before touching them (not possible).

When the monk heard that the warlock could not identify the rings he said “I reach for the blue one and I take it!” The other players did not react and I rushed to say, “The other two rings dissapeared!”

And then it all broke down. The player who plays the rogue wants to stop the monk from touching the rings. I make them do a dex throw and the rogue won. But I had already said the rings disappeared, so in order to keep the narrative going and not allow them to meta-game with the knowledge, I ruled that the rogue was able to stop the monk from taking the ring, but he touched it with a finger and the other two disappeared.

The rogue starts complaining, claiming its not fair, and gets mad (the player). He takes it personally and starts to put away his things, really angry. I told him I already said the rings disappeared, and I’m not getting them back, and that I already gave him the chance to fight for the remaining ring, even though he has been getting all the magic items lately, and the monk has nothing yet.

He says he wants me to pause before narrating the consequences of the players actions and ask everybody if they want to do something, so that everyone can react to everything. He starts making threats, saying he cant play with us if we can’t play like he wants.

And when I explain to him that he has to roleplay that anger in-character, against the monk, he says “from now on my character is going to do the opposite of what the monk does and wants. And if he does something like this again, I’m killing him, and it’s not my fault because I warned him”.

It took me a while to get him to calm down a little, but the session ended a bit on the cold side.

For the record, the other two players side with me, and agree that events should flow naturally, even when it’s not totally fair to the players.

What do you think? I don’t like this behavior, and being called unfair touches a sensitive string, because its been multiple times now that I’ve done things to keep this player happy, including talking to other players individually and telling them to tone down their arguments with him and giving him a good amount of the loot and letting him get away with some power-gamey stunts.

Can an Arcane Archer’s choose to activate arcane shot after it gets deflected?

Inspired by Can I use deflect missile if I get an ally to shoot me? and Can a monk catch and throw an Arcane Archer's active Arcane Shot back at them with Deflect Missiles?, can a (friendly) Arcane Archer choose not to activate their Arcane Shot when it hits their ally, but then activate it when it hits the new target?

Once per turn when you fire an arrow from a shortbow or longbow as part of the Attack action, you can apply one of your Arcane Shot options to that arrow. You decide to use the option when the arrow hits a creature, unless the option doesn’t involve an attack roll.

Emphasis mine.

So in this scenario, the Monica the Monk runs on ahead, in a position where she can see Edwin the enemy mage. Archie the Archer does not have line of sight to the enemy caster. He fires his arrow at Monica the Monk, who uses her reaction to deflect it successfully.

If you catch a missile in this way, you can spend 1 ki point to make a ranged attack with the weapon or piece of ammunition you just caught, as part of the same reaction.

Let’s say the arrow (thrown as an attack by Monica the monk) now hits Edwin the enemy mage, can Archie the Arcane Archer then activate the Arcane Shot to try and affect Edwin the enemy mage with it?

What happens if a character’s velocity is greater than 0m when the character gets a Phase?

I’m preparing to run a Hero System, 6th Edition campaign, and I’m struggling to understand movement, especially velocity. Here’s the question: When a character’s Phase ends yet his velocity is still greater than 0m, does the character’s velocity affect what Actions the character can take on his next Phase?

For example, Slick’s Phase ends, but his velocity is still 20m. On Slick’s next Phase, can he take a Zero Phase Action to add velocity (E61 156), spend a Half Phase to take a Half Move during which he adds even more velocity, then spend a Half Phase to take an Action that requires an Attack roll, despite Slick still having a greater-than-0m velocity? Or, because Slick’s velocity is 20m at the start of the Phase, must Slick first take a Full Move or Half Move to reduce his velocity to 0m before the character can do anything else besides move?

Note: My confusion stems from this statement: A character "may not deactivate the Movement Power until he decelerates to 0m normally or through some outside means" (E61 156 and E62 25). So far as I can tell, the game doesn’t describe exactly what this means (i.e. I can’t tell if not moving is supposed to be the same thing as deactivating a Movement Power). Further, the game doesn’t seem to describe how already having velocity when a Phase begins impacts the character’s ability to take Actions. Finally, I’ve found no examples that cover what I imagine is this relatively common situation.

How do I minimize the number of passwords leaked when a PC gets compromized?

For customer support reasons, we need to store passwords to some of our customers’ systems (with their explicit, written permission, of course), as well as, obviously, passwords to some of our own systems. Customer support agents and administrators need to be able to access those passwords.

I am aware that – despite all our efforts to the contrary – it might only be a matter of time before one of the PCs in my company’s network gets infected with malware.¹ When that happens, I want to minimize the damage. In particular, I want to minimize the number of passwords that gets leaked.

Classic password managers don’t help here. They help against password reuse and other dangers, but they are not designed to mitigate that kind of threat. On the contrary: The customer support guy’s PC is compromised, they enter the master password to their password manager and… bang… the bad guys have won the jackpot.

I am looking for a solution to ensure that only as few passwords as possible (ideally, only the passwords actively used during the time period between the PC being compromised and the attack being detected) are leaked.

Obviously, storing the passwords on paper² instead of a password manager would solve this, but I would also like for the solution to be practical (the paper solution won’t work if the users are in pandemic-induced home office, for example). Another option might be an online password manager which "rate limits" the number of passwords that can be accessed per hour (and sends out e-mail alerts when too many password are requested).

I don’t want to reinvent the wheel, and I’m sure that other companies have the same issue. Is there any "canonical" or at least widely-used and established solution to this issue?

¹ If you google for "percentage of companies having been hacked" or "percentage of companies having been infected with malware", you get various news articles on the first page claiming various two-digit percentage rates. I don’t want to get hung up on a particular number, I just want want to illustrate that the risk is real and much, much more likely than "rubber hosing" or something similar.

² To clarify the threat model: I am concerned about hackers on the other side of the world having a "lucky day" (i.e., an employee starting a malicious file which somehow managed to get through all our filters), getting into our network and then seeing what they can harvest before doing their usual ransomware stuff (yes, we do have backups). I am not concerned about targeted and/or physical attacks by state actors (fortunately, we are not important enough, and neither are our customers).