Learndash 3: Custom scoring for quiz questions

I have a project in WordPress + Learndash 3. The whole point of my project is to simulate an exam that that has some weird scoring rules for each question.

Here is how points should be awarded for multiple answer questions:

All multiple answer questions have 5 answers from which 2 to 4 answers are correct (depending of the question) Let’s say some questions has the following answers:

A B C D E = 5 answers from which 2 are correct (A and C)

If I mark correctly A and C I get 5 points:

A B C D E  X   X   1 1 1 1 1 = 5 points 

If I mark A and B I get:

A B C D E X X 1 0 0 1 1 = 3 points 

In this case the user gets 1 point for A because is correct, 0 points for B because is incorrect and marked correct, 0 point for C because it was the correct answer but is not marked, and 1 point for each D and E because they are wrong answers but the user has not marked them as incorrect.

In conclusion I need Learndash Quizez to award:

  • 1 point for each correct answer
  • 1 point for each incorrect answer that user has not marked as correct
  • 0 points for answers that are incorrect and marked as correct
  • 0 points for answers that are correct but not marked as correct

The whirpool application of the Control Water spell leads to several questions regarding creatures caught in it

As written, the whirlpool usage of the Control Water spell says:

Whirlpool. This effect requires a body of water at least 50 feet square and 25 feet deep. You cause a whirlpool to form in the center of the area. The whirlpool forms a vortex that is 5 feet wide at the base, up to 50 feet wide at the top, and 25 feet tall. Any creature or object in the water and within 25 feet of the vortex is pulled 10 feet toward it. A creature can swim away from the vortex by making a Strength (Athletics) check against your spell save DC.

When a creature enters the vortex for the first time on a turn or starts its turn there, it must make a Strength saving throw. On a failed save, the creature takes 2d8 bludgeoning damage and is caught in the vortex until the spell ends. On a successful save, the creature takes half damage, and isn’t caught in the vortex. A creature caught in the vortex can use its action to try to swim away from the vortex as described above, but has disadvantage on the Strength (Athletics) check to do so.

The first time each turn that an object enters the vortex, the object takes 2d8 bludgeoning damage; this damage occurs each round it remains in the vortex.

Are creatures or objects in the water and within 25′ of the vortex automatically pulled 10′ toward it? Do they continue to be pulled 10′ further toward the center of the vortex every round they are in it? Is a creature or object caught in the vortex also pulled down toward the bottom? On a failed save, are they caught for the entire duration of the spell, with no more chance at saves, or until they can swim free of it? On a failed save, does a creature continue to take 2d8 bludgeoning damage every round they are in the vortex? Can the whirlpool be cast so that it is completely underwater? Also, can the whirlpool be cast ‘upside down’ so the widest part is at the bottom?

How to stop players from trying to gauge success of meta-ideas via meta questions?

I am running a campaign in The Dark Eye, the Year of the Griffon to be exact.

Due to having quite an abundant downtime by having taken initiative quite early

the group had about 2 and a half months of downtime. That in itself is not a problem. Yet my group did spend the downtime in ways that start to make me think carefully: The siege-engineer did recruit all the carpenters and masons to fix up the walls

while the Maga did start to research a variant of Greek fire. That luckily took her most of the time… But exactly there lies the problem:

My players are all students, some of them with at least a good degree of chemistry and physics knowledge (including the Maga, who has 2 semesters of chemistry behind her). As a result, they tend to come up with ideas that make incredible sense in themselves… but the rules for TDE explicitly state that some stuff is simply not possible. For the most part, they did swallow that gunpowder simply can’t be made due to “it’s just like that” and that the recipe for fireworks is not only highly complex but also so arcane, that nobody knows it.

YET this makes them try to figure out how to use the little Greek fire they managed to produce up to now (4 flasks) much more efficiently – as in getting more area of effect. While they did not yet test it, they had ideas like

  • How about training a dog to carry a jar of greek fire into the orc camp and then shoot the jar from the walls with a flaming arrow?

On ideas like this I did say up to now “I did look into that topic in the books and I will have to make a ruling as there are no rules written yet. I have a vague idea how to rule on it, but would you mind stopping to speak in hypotheticals and bring this up in character through action or prompting that in an officer’s meeting?” Pretty much I try to go by In Character Action = In Character Consequences and Not Said = Not Done.

The idea to weaponize the results of a failure on the alchemy I could squat luckily: “You don’t exactly know how you made it create the poison gas it made… you could try to recreate the experiment though. Do you want that?”

Up to now, the only three things they did act on based on sentences like those was to build up some siege engines for defense (a trebuchet, 2 catapults, repairing one ballista), re-inventing greek fire (which did blow up the Maga twice already for it is so dangerous to work with as established in the rules) and digging ramparts1 around the city wall (ongoing, they are about 2/3rds done) and will be finished by the end of the months.

How can I discourage the players from directly adapting ideas from modern warfare methods (like gas, using chemical waste (dioxin) or trained dogs with bombs) and instead staying in the established canon, that puts greek fire at the pinnacle of chemical warfare and lobbing corpses as the pinnacle of biological warfare?

1 – Yes, they made Ramparts, not moats.

some questions on Go-Back-N (GBN) protocol

I was reading a textbook which describe Go-Back-N (GBN) protocol with Finate State Machines as pictures below show: enter image description here

enter image description here

where ^ mean initial state. So my questions are:

Q1-THis is the interactive animations link to GBN https://media.pearsoncmg.com/aw/ecs_kurose_compnetwork_7/cw/content/interactiveanimations/go-back-n-protocol/index.html

And let’s say we are sending packet 0, packet 1 and packet 2, and packet 1 is lost beforen it arrive receiver. So when it is timeout, GBN will make sender re-send packet 1 and packet 2, And I found an interesting thing which is,if you try the link with above scenario and you send packet 3 just before timeout occurs,this action reset the timer, because you can see the timeout is postponed(otherwise you will see packet 1,2,3 flying in screen).But according to the sender’s FSM, after you send packet 3, timeout occurs immediately, then the sender will re-send packet 1 and packet 2, but it didn’t happen as timeout is postponed, which contradicts the fact that time is only get reseted when base = nextseqnum?

Q2-On the receiver’s FSM, why it needs to set expectedseqnum = 1 and make a packet based on it? why we cannot set expectedseqnum = 0 as the only initialized action?

Do security questions pose threat do the user?

When we set up security questions, assuming we answer fairly, we give out to the site our secrets, facts from our past. I wonder if the following is considered:

  • we are encouraged to use a different password for every account, but our mothers have only one maiden name, we’ve had a limited number of pets, etc. Inevitably the answers are going to repeat on many accounts.
  • we’ve seen many data breaches from many places, including the largest internet companies. Can the security answers become public this way? We can update passwords, but our secrets remain the same, except in case of a breach they are no longer secret. Consequences of releasing security answers might be much more serious than that of leaking a password.
  • are the companies and websites actually allowed to store such private information? Are there legal limitations?

I found the following questions on SE:

  • How are "security questions" not a major security hole for any application that uses them?
  • Do security questions make sense?
  • Does removing my security questions on Yahoo make me more secure?
  • Do security questions subvert passwords?

The answers range from "security questions are bad" to "they are bad but we have nothing better". Do we really have nothing better in 2020?

What are the present recommendations for the website creators?

What are the best recommendations for the users? Lie? Provide random strings as answers?

Newbie questions – only 17 threads running of 200 available


I’m testing my first GSA SER project, everything seems to works fine except one major problem.
I set up max 200 theads, but GSA runs much more less (for example 10-50 threads at a time with ~50-75 LPM). Sometimes up to 100+ threads with 130+ LPM. All system resources almost free – pls find attached screenshot. I use a premium links list. Speedtest shows about 100-150 Mbs speed. Xevil runs at another machine and have a lot of free resources.
Why cant GSA run maximum amount of threads?

Hope Sven or smb else could help me with it.
Best regards.

General questions on channeling magic through daggers in 4e

When a sorcerer uses an a dagger to channel a power with the implement key word, what bonus does the dagger give them? The phb 2 says you don’t add the proficiency, but it also says you are proficient with the dagger.

Also, how do you calculate critical damage when channeling through a dagger? Do you include the daggers crit damage (if it’s magic or basic)?. How do you find it’s crit damage?

And finally, can you have a magic item or weapon of a higher level than you, and use it to channel spells????

What questions are useful to scope a mobile app pen test?

When arranging a pen test it’s common practice to ask the client a set of questions, and use the answers either as the basis for further discussions, or to directly provide a test plan and quotation.

For a mobile app specifically, what questions are helpful to include? For example:

  • What platforms does the app support? e.g. iOS, Android
  • Was the app developed using a cross-platform framework? e.g. PhoneGap, Kivy
  • Does the app connect to it’s own back-end service? e.g. bespoke REST, Firebase
    • Do these connections use SSL pinning?
  • Does the app provide additional UI secuity? e.g. PIN, FLAG_SECURE
  • Does the app provide IPC interfaces? e.g. URL handler, intent
  • Does the app interface with hardware? e.g. bluetooth card reader
  • Is the app obfuscated?
  • How is the app delivered? e.g. public store, private app in store, alternate store, sideloading
  • What authentication is used? e.g. pairing, user name & password, connect with Facebook
  • How many views/pages does the app have?
  • What permissions does the app request?
  • Does the app make arbitrary network connections or listen on ports?

If you have any other ideas, please let me know!