Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Live Search
spaceKeyDOC
placeholderSearch

Expand
titleTABLE OF CONTENTS
Table of Contents
maxLevel3
minLevel2

...

The application’s administration area is protected by a personal login. You will usually find this at the following URL: http://wwww.your-domain.com/www/. You can only log in with a valid account name and the corresponding password. The admin area login is protected by the area_www ACL right. You need write rights in order to log in. New EFS installations are delivered with a dedicated subdomain which includes an SSL certificate and you will log in via https instead of http. If you have your own EFS installation, it is possible to insert your logo into the login screens. If you wish to use this option, please get in touch with your Questback contactour support.

...

Info

This application can be operated from anywhere with any commercially available browser. EFS strictly follows the platform concept, i.e. all functionalities required to successfully conduct electronic, Internet-based survey research are available in one place. You will find the tools for both sending mails and creating surveys as well as for processing results in a single place. This facilitates smooth performance of personalized surveys and, in anonymous surveys, allows you to draw on-the-fly samples for future surveys and initiate feedback loops with respondents.

...

  • Staff accounts in EFS installations always have an expiration date after which they will be automatically deactivated. This date is usually the same as the expiration date of the renting contract. If your account has expired, please get in touch with your Questback contact or with Questback Supportour support.

  • Please note: EFS has brute force protection, i.e. only a limited number of false password entries is possible. Thereafter the user account is deactivated for a specified period (by default suspension occurs after the sixth false entry and the waiting time is 30 minutes). Therefore please use the help offered on the login screen if you have forgotten your password.

Info

The link to set a new password is valid for 24 hours. The link loses its validity if the user clicks on "Forgot your password" again. Only the last requested link is valid.

Security Question

The function for sending a forgotten password is protected by a security question.

  • This security question is defined at the first login: You can select the desired question from a list of suggestions or enter it yourself, and must enter the answer yourself.

  • You can subsequently edit the security question in the System → Users → Own account menu → User data.

...

Security Criteria 

The following security criteria apply for account names and passwords:

...

Whether a password meets default security criteria is checked during entry and dynamically displayed. The admin area can optionally be operated in High Security Mode. In addition to EFS standard security features, supplementary protective measures that meet advanced requirements for web application security are activated in this operation mode. These include, in particular, stricter security criteria for user passwords. A special documentation providing detailed information on the High Security Mode is available for download from our customer center.

Info

Simultaneous use of an EFS Admin account is not possible. Simultaneous use of an EFS Admin account will invalidate the previous login.

Browser Support

Note

We would like to inform you that from Oct 1st 2021 we will no longer support Internet Explorer 11 (IE 11). Read more.

The current versions of ChromeFirefox, Internet ExplorerEdge, and Safari (only on macOS) are supported in the current EFSversions. If your installation is still using an older EFS version, the browser version will no longer be supported . This means that older EFS versions do not provide browser bug fixes, if current versions are already available.

The version 11 of the Internet Explorer is supported. The support of the older versions (IE 9-10) was discontinued as of 17.4. The support of ChromeFirefox, and Edge is limited to the latest version. Older versions are not supported. The Safari version of the current and the previous macOS release is supported. Currently the Safari version 11+ is supported.

...

Info

Please use the latest version of your default web browser.

Table Overview

IE 11

Edge (latest version)

Firefox (latest version)

Chrome (latest version)

Safari 12+ (latest version)

Mobile (iOS 11+, Android 5+ and only with responsive layouts or EFS Portal

EFS Admin Area (www)

(tick)

(tick)

(tick)

(tick)

(tick)

(error)

EFS Leadership / Employee
("Feedback-Center")

(tick)

(tick)

(tick)

(tick)

(tick)

(error)

EFS Portal (Portal)

(tick)

(tick)

(tick)

(tick)

(tick)

(tick)

EFS Survey / Panel (Ospe, Panel Website Standard Layout)

(tick)

(tick)

(tick)

(tick)

(tick)

(tick)

Panel Website Responsive

(tick)

(tick)

(tick)

(tick)

(tick)

(tick)

Reporting+

(tick)

(tick)

(tick)

(tick)

(tick)

(error)

Info

Browser support of customized solutions cannot be ensured. The guarantee only applies to out-of-the-box functionalities. If a layout or feature has been adapted to customer requirements, there is no guarantee that enhancements in the standard EFS will automatically fix a customized feature.

Protection against viruses, malware and cross-site attacks

With EFS you can rely on ad-hoc anti-virus and malware scanning for all uploads within the EFS administration area. During an upload, files are immediately scanned for malware, before being moved to their final destination within the EFS platform. If malware is found, files are immediately removed from the temporary storage and the user is notified that the upload was not successful. This approach ensures that at no point malware can be distributed through EFS.

Tivian also uses CSRF tokens for protecting the EFS administration area from cross-site attacks – without compromising on usability. While being reliably protected from cross-site request forgery attacks, administration users can continue working in concurrent browser tab sessions.

Working with a web application

...