murena.io - TLS / STARTTLS Test

Discover if the mail servers for murena.io can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 09 Jul 2025 00:54:58 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Problems found

The mailservers of murena.io can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @murena.io addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.ecloud.global 2a01:4f9:c01f:1f98::1	10	supported	mail.ecloud.global	DANE errors PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-07-09 2 s
mail.ecloud.global 95.217.246.96	10	supported	mail.ecloud.global	DANE errors PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-07-09 2 s
mail.ecloud.global 2a01:4f9:c01f:1f98::1	50	supported	mail.ecloud.global	DANE errors PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-07-09 2 s
mail.ecloud.global 95.217.246.96	50	supported	mail.ecloud.global	DANE errors PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-07-09 2 s

Outgoing Mails

We have not received any emails from a @murena.io address so far. Test mail delivery

Certificates

First seen at: 2025-07-08

CN=mail.ecloud.global

Certificate chain

mail.ecloud.global
- 2025-10-04 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mail.ecloud.global

Alternative Names

mail.ecloud.global
mail01.ecloud.global
mail2.ecloud.global
mail3.ecloud.global

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2025-07-06
Not valid after: 2025-10-04

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: E8:CF:69:50:F8:8A:E1:4F:3E:8C:01:52:6E:48:CB:0A:5B:11:4F:FC:95:0D:E2:1D:97:26:5D:D3:04:F5:4B:67
SHA1: 3D:0A:2D:EF:C0:FD:C7:F8:9D:C1:E3:44:0F:88:A1:01:BB:6B:A0:8D

X509v3 extensions

subjectKeyIdentifier

0A:3A:44:22:D3:C8:3E:E4:CC:00:35:42:BE:F0:DD:4F:D6:DE:29:F1

authorityKeyIdentifier

keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8

authorityInfoAccess

CA Issuers - URI:http://r10.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

crlDistributionPoints

Full Name:
URI:http://r10.c.lencr.org/26.crl

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : ED:3C:4B:D6:E8:06:C2:A4:A2:00:57:DB:CB:24:E2:38:
01:DF:51:2F:ED:C4:86:C5:70:0F:20:DD:B7:3E:3F:E0
Timestamp : Jul 6 01:03:45.242 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:DE:45:7A:D6:57:C6:73:EB:1B:76:AC:
D0:B1:65:7F:5C:F2:B8:2E:CF:19:BD:43:EE:C7:3D:97:
77:EF:BC:18:B1:02:20:5A:70:5C:F5:D9:A7:97:CD:D3:
C9:31:81:07:C3:96:72:43:A7:57:5F:8F:2A:8B:72:8E:
D5:A5:4B:2B:03:52:63
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
Timestamp : Jul 6 01:03:45.232 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:CC:32:71:7D:F1:E0:53:D2:50:7C:6B:
3E:BA:45:BD:C3:D3:84:0A:3B:DB:05:31:F9:0F:07:B4:
25:CB:EC:51:50:02:20:78:33:CB:D1:4A:F2:10:69:4E:
2D:33:0A:C6:C2:85:FE:6E:A9:11:E9:C4:D9:C1:0E:43:
E3:F5:8A:4A:09:C2:3D

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name	Options	DNSSEC	Matches
_25._tcp.mail.ecloud.global	DANE-TA: Trust Anchor Assertion Use subject public key SHA-256 Hash	valid	—

SSL check results of murena.io