Site icon T4Tutorials.com

Security & Backup WordPress MCQs

1. Which plugin is commonly used for WordPress security?

(A) Yoast SEO


(B) Wordfence


(C) Elementor


(D) WooCommerce


2. What does SSL stand for in WordPress security?

(A) Secure Site Login


(B) Secure Sockets Layer


(C) System Security Layer


(D) Safe Secure Login


3. Which of the following is a recommended way to protect the WordPress admin area?

(A) Use “admin” as username


(B) Strong password and 2FA


(C) Disable SSL


(D) Keep plugins outdated


4. What is the default login URL for WordPress?

(A) /login


(B) /wp-login.php


(C) /admin


(D) /dashboard


5. Which role has the highest level of control in WordPress?

(A) Editor


(B) Contributor


(C) Author


(D) Administrator


6. Which plugin is popular for WordPress backups?

(A) UpdraftPlus


(B) Akismet


(C) WooCommerce


(D) Jetpack SEO


7. What is the best practice for updating WordPress?

(A) Disable updates


(B) Update core, plugins, and themes regularly


(C) Only update plugins


(D) Update once a year


8. To prevent brute-force login attacks, you can:

(A) Limit login attempts


(B) Remove themes


(C) Disable caching


(D) Change permalink structure


9. A backup of a WordPress site should ideally include:

(A) Only posts


(B) Database and files


(C) Only media library


(D) Only themes


10. Which file contains database connection details in WordPress?

(A) functions.php


(B) wp-config.php


(C) index.php


(D) wp-settings.php


11. What does 2FA stand for?

(A) Two Factor Authentication


(B) Two File Access


(C) Two Function Admin


(D) Two Fast Access


12. Which plugin helps with login security in WordPress?

(A) WPForms


(B) iThemes Security


(C) WooCommerce


(D) WPBakery


13. To prevent SQL injection, WordPress developers should:

(A) Use prepared statements and sanitization


(B) Use weak passwords


(C) Disable plugins


(D) Allow direct database queries


14. The WordPress security key stored in wp-config.php is called:

(A) Database key


(B) Authentication unique keys and salts


(C) Password key


(D) Theme key


15. Which of the following helps protect WordPress from spam comments?

(A) Jetpack


(B) Akismet


(C) WooCommerce


(D) WP Rocket


16. A common method to secure wp-admin directory is:

(A) Password protect with .htaccess


(B) Delete the directory


(C) Disable plugins


(D) Remove users


17. Which type of backup is fastest?

(A) Full backup


(B) Incremental backup


(C) Differential backup


(D) Manual backup


18. Which of the following is NOT a recommended WordPress security practice?

(A) Keeping WordPress updated


(B) Using admin as username


(C) Installing security plugins


(D) Regular backups


19. What is the default database table prefix in WordPress?

(A) db_


(B) sql_


(C) wp_


(D) wpdb_


20. To hide WordPress version number, you should:

(A) Edit functions.php


(B) Delete wp-admin


(C) Change permalink structure


(D) Remove all users


21. Which malware scanner plugin is commonly used in WordPress?

(A) WP Mail SMTP


(B) Sucuri


(C) WooCommerce


(D) WP Rocket


22. Which backup plugin allows cloud storage like Google Drive?

(A) Elementor


(B) UpdraftPlus


(C) Yoast SEO


(D) WPForms


23. What does CAPTCHA protect against?

(A) Spam bots and automated logins


(B) SQL injection


(C) Malware


(D) Theme updates


24. What is the benefit of changing the WordPress login URL?

(A) Prevent brute-force attacks


(B) Faster backups


(C) Improved SEO


(D) More plugins


25. Which of the following is a reliable method of WordPress backup?

(A) Manual backup via cPanel


(B) Backup plugin


(C) Cloud backup


(D) All of the above


26. WP-CLI can be used for:

(A) Managing security


(B) Managing backups


(C) Updating WordPress


(D) All of the above


27. To protect against XSS attacks, you should:

(A) Use proper data sanitization and escaping


(B) Disable all plugins


(C) Use a weak password


(D) Allow iframe injections


28. Which of the following is a premium WordPress backup plugin?

(A) UpdraftPlus Premium


(B) WP Bakery


(C) Contact Form 7


(D) WooCommerce


29. Why should you change the default “wp_” table prefix?

(A) Better SEO


(B) Faster queries


(C) Security against SQL injection


(D) More storage


30. Which security practice helps secure file permissions?

(A) Set wp-config.php to 400 or 440


(B) Give 777 permission to all files


(C) Make themes writable to all


(D) None of the above


31. Backups should be stored:

(A) Only on the same server


(B) On remote/offsite storage


(C) In the themes folder


(D) Only in wp-admin


32. What is the best way to recover from a hacked WordPress site?

(A) Restore from a clean backup


(B) Delete wp-admin only


(C) Change permalink structure


(D) Disable plugins


33. What does reCAPTCHA stand for?

(A) Remote CAPTCHA


(B) Reverse Turing Test CAPTCHA


(C) Completely Automated Public Turing test to tell Computers and Humans Apart


(D) Real CAPTCHA


34. Which file should you edit to disable file editing in WordPress Dashboard?

(A) wp-config.php


(B) functions.php


(C) index.php


(D) style.css


35. To schedule automatic backups in WordPress, you can use:

(A) UpdraftPlus


(B) Jetpack


(C) WP Rocket


(D) Contact Form 7


36. Which type of SSL certificate provides the highest trust level?

(A) Domain Validation (DV)


(B) Organization Validation (OV)


(C) Extended Validation (EV)


(D) Free SSL


37. WordPress recommends passwords that are:

(A) At least 8 characters, mixed symbols, numbers, and letters


(B) Only numbers


(C) Only lowercase letters


(D) Same as username


38. Which firewall can be used to secure WordPress sites?

(A) Wordfence Firewall


(B) Apache


(C) WooCommerce


(D) Elementor


39. Which of the following is a manual backup method?

(A) Export database via phpMyAdmin


(B) Download files via FTP


(C) Copy wp-config.php and wp-content


(D) All of the above


40. What is the main purpose of backups?

(A) Faster SEO


(B) Website recovery after errors or attacks


(C) Install new themes


(D) Create more plugins


41. Which WordPress file stores security salts?

(A) .htaccess


(B) wp-config.php


(C) functions.php


(D) style.css


42. To secure wp-admin login, you can add:

(A) reCAPTCHA


(B) Two-Factor Authentication


(C) Strong passwords


(D) All of the above


43. How often should backups be taken for an active site?

(A) Once a year


(B) Once a month


(C) Daily or weekly


(D) Never


44. Which backup type saves everything each time?

(A) Incremental backup


(B) Differential backup


(C) Full backup


(D) Manual backup


45. Which security plugin includes malware cleanup services?

(A) Sucuri


(B) WooCommerce


(C) Elementor


(D) Jetpack SEO


46. What does brute-force attack target in WordPress?

(A) Login credentials


(B) Database structure


(C) Media files


(D) Permalinks


47. The WordPress security setting “DISALLOW_FILE_EDIT” is added in:

(A) wp-config.php


(B) index.php


(C) style.css


(D) header.php


48. Cloud storage options for WordPress backups include:

(A) Google Drive


(B) Dropbox


(C) Amazon S3


(D) All of the above


49. Which plugin combines both security and backup features?

(A) Jetpack


(B) WooCommerce


(C) UpdraftPlus


(D) Elementor


50. Why is it important to regularly test backups?

(A) To ensure backups are working and restorable


(B) To improve SEO


(C) To speed up website


(D) To install themes


More MCQs on WordPress

  1. Introduction to WordPress (WordPress MCQs)
  2. WordPress Installation & Configuration MCQs
  3. Themes in WordPress MCQs
  4. Plugins in WordPress MCQs
  5. Posts & Pages WordPress MCQs
  6. Users and Roles – WordPress MCQs
  7. Widgets & Menus – WordPress MCQs
  8. WordPress Dashboard & Settings MCQ
  9. Security & Backup WordPress MCQs
  10. Performance Optimization – WordPress MCQs
  11. SEO in WordPress MCQs
  12. Advanced WordPress Development MCQs
  13. WooCommerce Basics WordPress MCQs
  14. Database Structure WordPress MCQs
  15. Gutenberg Block Editor WordPress MCQs

Computer Science Repeated MCQs Book Download

Exit mobile version