this post was submitted on 13 Jul 2026
-12 points (16.7% liked)

Privacy

10303 readers
751 users here now

A community for Lemmy users interested in privacy

Rules:

  1. Be civil
  2. No spam posting
  3. Keep posts on-topic
  4. No trolling

founded 3 years ago
MODERATORS
 

Full disclosure: I am the maker. I am not here to tell you it is perfect. I am here because this community is best at finding the holes, and I would rather you find them now.

Elusive (elusivemail.xyz) is encrypted email. The thing I care about is honesty over claims. The landing page has a two-sided ledger showing what is sealed to your key versus what the server can see. Most services bury the second half. I put it front and center.

Sealed to your key: message bodies, subject lines, attachments, the sender and recipient of every stored message, and in keyfile mode the key itself. Visible to the server: who a message is from and to at the moment it passes through, your account details, and incoming mail the instant it arrives, before it is encrypted to your key.

The crypto: keys are generated in your browser (OpenPGP.js, curve25519, Argon2id). Your password never leaves your device, the server only stores a hash, so it cannot derive your key. End-to-end by default, plus a keyfile mode where nothing stored can decrypt your mail.

Where I will not blow smoke: incoming external mail is plaintext at receipt, the envelope is visible at delivery time to route mail (no logs), and it is closed source right now.

The whole plan is public and numbered on the roadmap (elusivemail.xyz): open source everything at 300 users, then a public API, native apps, our own hardware in Switzerland, a multi-server split so no single machine holds everything, an independent audit at 4,000, and eventually an encrypted communicator and drive. If a number slips, the page says so. Watch the roadmap, not my word.

It is free, no ads, I make no money. What would make you trust it, or not? What did I get wrong?

you are viewing a single comment's thread
view the rest of the comments
[–] unitedwithme@lemmy.today 3 points 1 day ago (2 children)

Haha, I chuckle at everyone shitting on it already like they've never used A Gmail, hotmail, or icloud account who are way worse than what you're stating.

Plus, it's a test, you're not asking people to migrate their whole lives to it.

Anyway, as an up-and-coming service/provider, its nice to see competition in this space. I do have a few questions:

  1. Why currently closed source and not launching with open source? You're eventually going that way anyway, right?
  2. If its owned hardware and not everything on 1 box, but you'd make no money, how are you going to fund projects in the future? What about upgrades or unforeseen expenses?
  3. What's your end goal making your own over Proton, Tuta, etc? Are there newer/better encryption methods? Is this a project to learn from?
  1. If its owned hardware and not everything on 1 box, but you'd make no money, how are you going to fund projects in the future? What about upgrades or unforeseen expenses?

They could start taking donations, but it is worth asking the question to get them thinking about future plans

[–] elusivemail@lemmy.world -2 points 1 day ago (1 children)

Apreciate this, genuinely.

  1. Opening it at 11 users does nothing, nobody audits a nobody. Want a bit of recognition first, and honestly want it rock solid before the whole internet tears into it. Opens at 300, that's the deal.
  2. Fair one. "No money" means no ads, no data selling, no investors, not zero revenue ever. It's cheap to run now and I cover it myself. As it grows: donations first, then paying for capacity like storage and extra aliases, anonymous payment. Never charging for privacy itself.
  3. Honestly, we want to be real competition, not just another inbox. The goal is a full private cloud: mail, messaging and drive on the same keys, with real anonymity built in. Crypto itself is standard (OpenPGP, curve25519, Argon2), the bet is the honesty and the full anonymous stack, not fancier math. We're 11 users and a long way off, so judge the steps not the dream.
[–] unitedwithme@lemmy.today 2 points 1 day ago (1 children)

Thanks for the quick reply. Looks like you're at 12 users now on your website. Count me a 13 haha.

I'm not good at reading through the code, but I test features, function, errors, holes, etc. I'll do what I can.

[–] elusivemail@lemmy.world 0 points 1 day ago (1 children)

Haha, thanks, I appreciate that. Let me know how you get on with it. I'd love to hear what works, what doesn't, and anything that feels off. And yeah, keep an eye on that 300-user milestone. 😉

[–] unitedwithme@lemmy.today 1 points 1 day ago (1 children)

OK, question(s):

  1. How to implement into Thunderbird mail client for practical day-to-day use? What would the SMTP address be and other settings? I didn't find that info on your website, but I did find you're looking into completing mobile and desktop apps.
  2. Have you tested internal/external services to see how well OpenPGP emails work? I had an issue w encrypted via a test proton acct or an IMAP acct in Thunderbird with OpenKeychain encryption key. My 2 test accounts within Thunderbird work so maybe I've goofed something up. I'll check it out in the morning.
[–] elusivemail@lemmy.world 1 points 20 hours ago (1 children)

Sorry you waited 15h for this, solo project so answers come when I'm awake. Good questions:

  1. Web only right now, no IMAP/Thunderbird yet, but client access is on the roadmap with the desktop and mobile apps. Coming, just not today
  2. Quick clarify so I'm straight with you: the OpenPGP encrypts your stored mail to your own key, so we're not interoperable PGP, outgoing mail leaves as normal email. Nothing between us and Proton/OpenKeychain to test there, so your Thunderbird issue is separate from us. If that interop matters to you, fair feature ask.
[–] unitedwithme@lemmy.today 1 points 9 hours ago

NP. Thank you for the clarification. Honestly, unless others have encrypted email on their end, what OpenKeychain and Thunderbird offer is also almost pointless as it won't remain encrypted. I just thought it might be nice if multiple services were more so widespread using common interchangeable or compatible protocols.