A GPG-powered email gateway for activists, journalists, and privacy-first teams — honestly reviewed.

TL;DR

What it is: A self-hosted, OpenPGP-encrypted mailing list manager that acts as an email gateway for groups that need confidential group communication over email [website].
Who it’s for: Activist organizations, legal defense groups, whistleblower networks, journalists, and privacy-focused teams that need to exchange end-to-end encrypted email among members — and with people outside the group [website].
Cost savings: There is no SaaS version. The software is GPL-3.0 and free. Running it costs whatever a small VPS costs — $5–10/mo. Commercial alternatives like ProtonMail for Business start at $6.99/user/month; a group of 10 people costs $840/year minimum.
Key strength: The encryption model is uniquely practical — the list itself holds a keypair, and the server handles re-encryption, so senders only need to know one public key, not every member’s key individually [website].
Key weakness: No polished web interface. Administration is done via email commands or CLI. It’s rated 5.5/10 on VentureGaps, with reviewers specifically citing lack of UI and a small, non-mainstream community as the primary friction points [5].

What is Schleuder

Schleuder is an encrypting mailing list manager. It sits between your email inbox and your group, acting as a cryptographic relay. When you send an encrypted message to the list, Schleuder decrypts it, then re-encrypts it to every subscriber’s public key, and delivers individual encrypted copies to each member. Members can reply to the list, and replies stay encrypted end-to-end [website].

It also handles the reverse: non-subscribers can send to the list, and Schleuder can forward those emails (optionally encrypted) to subscribers. This makes it useful for groups that receive tips, reports, or sensitive inquiries from outside parties — the list acts as a secure inbox that multiple people can access without sharing a single email account or password [website].

The project’s mission statement is unusually explicit about its politics: “We give our time and knowledge to build and maintain this project in order to help people with their daily private communication and in the struggle for their personal emancipation, social and economic justice and political freedom” [website]. This is not a startup looking for a B-round. It’s volunteer software for people who have specific, real reasons to communicate outside of surveillance infrastructure.

The license is GPL-3.0. There is no GitHub profile listed in the project’s official materials, and no star count is available to reference [profile]. Third-party catalogs list it under encrypted communication software [1], and it appears in the YunoHost wishlist and community discussions around privacy-focused self-hosting [3].

Why people choose it

The third-party coverage of Schleuder is thin — which is itself meaningful. This is not a product being sold to anyone. The community that uses it is not writing Medium posts about it.

The case for Schleuder is narrow and unambiguous: if you need an encrypted group email channel, there is almost nothing else in the open-source self-hosted space that does specifically this. The few alternatives that exist (Sympa, Postorius/Mailman) are general mailing list managers with no encryption model — they manage distribution, not confidentiality [5].

The alternatives page on VentureGaps [5] lists Sympa (rated 7.0/10) and Postorius (6.0/10) as the closest comparisons. Neither encrypts content. The gap between Schleuder’s use case and those tools is not a UI preference — it’s a fundamentally different security model. You pick Schleuder when the question is “how do we exchange sensitive information by email across a group” not “how do we send a newsletter.”

The self-hosted community values it for reasons that don’t show up in product reviews: operational security for organizations that can’t trust commercial email providers. A lawyer passing case documents to colleagues. An activist group coordinating under potential state surveillance. A whistleblower intake channel at a nonprofit. For these users, the question isn’t “is the UI nice” — it’s “does the cryptography hold.”

Features

Based on the project’s website and documentation:

Core email gateway:

Receives encrypted email, decrypts, re-encrypts per-subscriber, delivers [website]
Subscribers can send to each other via the list — all traffic stays encrypted [website]
Can receive unencrypted email from non-subscribers and forward to list members [website]
Can send email to non-subscribers on behalf of the list (remailing) [website]

Key management:

The list itself holds a GPG keypair — senders need one public key, not N member keys
Subscriber key management handled server-side
New subscribers can be added; their public keys get imported to the list keyring

Administration:

List management via email commands sent to a special admin address
CLI tools (schleuder-cli) for server admins
Separate documentation paths for subscribers, list admins, and server admins [website]
Plugins and integrations documented for extension [website]

What it does not do:

No web UI for subscribers or list administrators [5]
No built-in statistics, analytics, or delivery tracking
No message threading UI, no archive browsing interface
Not a newsletter tool — no unsubscribe management, no HTML templates, no campaigns

The feature set is narrow by design. Schleuder does one thing: it maintains a shared encrypted email channel for a group. It does not try to be Mailchimp or Listmonk or even a modern discussion list. If you need any of those things, you’re looking at the wrong tool.

Pricing: self-hosted math vs. commercial alternatives

Schleuder has no SaaS offering and no paid tier. The software is GPL-3.0 and free to run [profile]. The cost is infrastructure.

Running Schleuder yourself:

VPS: $5–10/mo (Hetzner, Contabo, or equivalent) — a shared $5 VPS handles a low-volume encrypted list without issue
Domain and MX records: $10–15/year
SMTP delivery: typically bundled with a mail server you’re already running, or ~$1–5/mo for a small sending service
Total: roughly $6–15/month, regardless of number of subscribers or messages

Commercial encrypted email alternatives:

ProtonMail for Business: $6.99/user/month — a 10-person group costs ~$70/mo, or $840/year
Tutanota for Teams: €5/user/month — similar math
Skiff Business (now deprecated/acquired): was $12/user/month
Lavabit (niche): pricing varies, not widely available

What you’re actually saving: A 10-person activist group, legal team, or journalism unit paying for ProtonMail Business spends $840/year for encrypted email. Self-hosting Schleuder on a VPS: $84–180/year. The gap is $660–750/year. For a larger group (30 people), ProtonMail Business would cost $2,520/year; Schleuder on the same VPS still costs $84–180.

The savings math isn’t really the point here, though. Schleuder isn’t competing with ProtonMail on price — it’s competing on trust model. When you self-host, you control the server, the keys, the logs (or lack thereof). ProtonMail controls their servers and has responded to legal requests in the past. For some use cases, that distinction matters more than any dollar figure.

Deployment reality check

This is where Schleuder earns its 5.5/10 rating from VentureGaps [5]. It is not a Docker Compose up and done experience.

Schleuder requires a functioning mail server (Postfix is the standard), GnuPG, and Ruby runtime. It integrates with the MTA at a low level — incoming mail goes through a processing pipeline that calls Schleuder, which handles decryption and re-delivery. If you’ve never configured Postfix or set up mail routing rules, this is not a forgiving first project.

The documentation on the project website covers three separate roles: subscribers, list admins, and server admins [website]. That structure is clear, but the server admin path requires comfort with Linux mail infrastructure that’s genuinely specialized. This isn’t a “follow a 20-step guide” situation in the way that deploying a Nextcloud or Gitea instance is.

What you need:

A Linux server with a publicly routable IP and reverse DNS (for mail delivery)
Postfix or another MTA configured to accept and route mail to Schleuder
GnuPG installed
Ruby and the Schleuder gem
A domain with proper SPF, DKIM, and DMARC records to avoid deliverability problems
Basic understanding of GPG key management

What can go sideways:

Mail server misconfiguration is the most common failure mode — getting Postfix to hand off to Schleuder correctly requires reading the Schleuder-specific setup documentation carefully
GPG key expiry handling can silently break list delivery if keys expire and aren’t refreshed
Deliverability to major providers (Gmail, Outlook) from a self-hosted server requires SPF/DKIM/DMARC setup that many first-time deployers skip, resulting in messages landing in spam
The lack of a web UI means debugging problems requires log diving and CLI comfort [5]

Realistic time estimate for someone who has run a mail server before: 2–4 hours to a working list. For someone deploying their first mail server: plan for a weekend or bring in technical help.

Pros and cons

Pros

Does exactly one thing, correctly. Encrypted group email via standard OpenPGP — no proprietary lock-in, no special client required, works with any GPG-capable email client (Thunderbird, Apple Mail with GPG Suite, etc.).
GPL-3.0 license. Full source, no commercial restrictions, no Fair-code complications [profile].
Smart key model. The list keypair design means senders need one public key — dramatically simpler than requiring everyone to know all members’ keys.
Handles external senders. Non-subscribers can email the list and members can reply to them via the list — useful for intake channels, not just internal communication [website].
Plugin and extension architecture. The documentation covers projects and plugins, suggesting some extensibility beyond core functionality [website].
No SaaS vendor to trust. The entire trust model is you and your server.

Cons

No web UI. Administration is email commands and CLI. For anyone without command-line comfort, this is a hard stop [5].
Requires mail server expertise. Not a simple deploy — real MTA configuration required.
No GitHub presence listed. Signals a small, non-mainstream development community [profile]. The VentureGaps assessment explicitly flags “smaller community and less mainstream support” as a switching reason [5].
GPG usability is a persistent problem. End-to-end encryption via email has always had a key distribution and usability problem that Schleuder doesn’t solve — it just makes the server side cleaner. Subscribers still need to manage their own keypairs and import the list’s public key.
No deliverability tooling. Nothing tells you if messages are being delivered or filtered as spam. You’re debugging raw Postfix logs.
Documentation exists but is sparse. Three-role documentation structure [website] suggests the project knows its audience is technical — it’s not optimized for non-technical list admins.
No hosted option. Some providers offer hosted Schleuder instances (the website links a providers page), but there’s no first-party cloud offering [website]. Data not available on provider pricing or reliability.

Who should use this / who shouldn’t

Use Schleuder if:

You’re running an activist, legal, journalistic, or advocacy organization that needs encrypted group email communication, not just secure individual email.
You have someone on your team (or can hire someone once) who has deployed a mail server before.
You need to receive encrypted tips or inquiries from people outside your organization and distribute them to your team.
You want to own your encryption infrastructure completely — no vendor, no cloud, no third-party key storage.
You’re already self-hosting other infrastructure and have Postfix running.

Skip it if:

You want a mailing list for newsletters, marketing, or general community discussion — use Listmonk, Mailman, or Sympa instead.
Nobody on your team is comfortable with Linux mail server administration. The deployment friction is real [5].
You need a web interface for list management — there isn’t one [5].
Your threat model doesn’t actually require end-to-end encryption — you’re just looking for a privacy-respecting newsletter tool.
You need deliverability analytics, unsubscribe management, or any newsletter-era feature.

Consider hosted Schleuder providers if:

You need the encrypted group email capability but don’t want to run mail infrastructure. The project’s website links to a providers page [website], though first-party data on those providers is not available in reviewed sources.

Alternatives worth considering

Sympa — General-purpose mailing list manager. No encryption, but far more mature UI and administration tooling. VentureGaps rates it 7.0/10 [5]. Pick this for community lists, not security-critical communication.
Postorius / GNU Mailman 3 — The most widely deployed open-source list manager. Postorius is the web UI. No encryption. Rated 6.0/10 by VentureGaps [5]. Reasonable choice for open mailing lists.
ProtonMail for Business — Commercial encrypted email. No self-hosting, but a polished product with working mobile apps, calendar integration, and a web UI. The right call if your team won’t tolerate any CLI involvement and you’re okay trusting a vendor.
Delta Chat — Encrypted messaging over email using Autocrypt. Different model (more like Signal over email than a mailing list), but covers encrypted group communication for smaller teams without server administration overhead.
Signal — Not email, but if the goal is encrypted group communication rather than specifically email, Signal is far more usable for most groups. No self-hosting option.
Matrix / Element — Self-hosted encrypted group communication. Higher setup complexity than Signal, lower than Schleuder. Better fit if you want a chat model rather than email.

Bottom line

Schleuder is a specialized tool with a specific, legitimate use case: encrypted group email for organizations that need it. It is not trying to be Mailchimp, it is not trying to compete with Slack, and it is not aimed at non-technical founders automating their sales funnel. It is aimed at people who have real operational security requirements and are willing to run mail infrastructure to meet them.

For that audience, it’s essentially the only serious open-source option in its category. The alternatives are either unencrypted (Sympa, Mailman) or commercial and cloud-hosted (ProtonMail). The trade-off is real: you’re giving up UI polish, easy administration, and deployment simplicity in exchange for a cryptographic architecture you control completely.

If the mail server expertise is a blocker — which it will be for most non-technical teams — that’s exactly the kind of deployment upready.dev handles for clients. One-time setup, your keys, your server, no recurring SaaS bill.

Sources

Awesome Rank for Kickball/awesome-selfhosted — Ranked awesome-selfhosted lists including mailing list and communication categories. https://awesomerank.github.io/lists/Kickball/awesome-selfhosted.html
Pixeljets — “Self-hosted is awesome” — Overview of self-hosted tools used in production by indie hackers and CTOs. https://pixeljets.com/blog/self-hosted-is-awesome/
YunoHost Application Wishlist — Community voting on apps to package for YunoHost, including mailing and communication tools. https://apps.yunohost.org/wishlist
Awesome-Selfhosted — Ruby platform index — Curated list of self-hosted software built on Ruby, cross-referencing categories. https://awesome-selfhosted.net/platforms/ruby.html
VentureGaps — “Best Schleuder Alternatives in 2026” — Third-party rating (5.5/10) and alternatives comparison for Schleuder, citing lack of web UI and smaller community as primary friction points. https://www.venturegaps.com/alternatives/schleuder