[pritambaral]

> ... built a secure messaging system using the principles mentioned above.

> This has so far shown itself to be highly successful.

What do you mean by this? Can a system be "highly successful" at being secure without having been targeted, or have you actually hired testers and/or auditors to attack/study the system?

[theamk]

Well, you saw the quotes on the website, they did hire the best pentesters!

For example, one pentester ran "nmap", which did not find any ports open, so he said "There doesn't seem to be an available service to attack." This means the system is SUPER SECURE.

[dwviel]

These were just a selection of quotes that looked good on the web site, particularly the "GREAT JOB!" quote. That's kind of nice to see.

[theamk]

Well, you may want to choose different quotes, or even better, make whole reports available. Because if your pentesters do not know what to do when nmap fails, this means they must be pretty clueless and thus their reports do not have much value.