We found a major bug with bounce.io today in that their code allows the removal of the only e-mail address associated with an account and, effectively, locks out the account and all associated domains and IP addresses.
To their credit, the support staff at bounce.io reset the account, but, when re-activated, nothing auto-populated: neither the domains or IP addresses.
We've also sent several tests and anything received back by Comcast is being bounced back to them by Comcast because Comcast says it looks like it is supposed to be originating from our servers and our DMARC policy states no one else is allowed to send on our behalf.
We are also, by HIPAA, prohibited from using someone else's server as a gateway, and I'm not going to whitelist someone's service - we pretty much prohibit whitelisting on all of our managed MX servers, so this limits us a lot.
We're definitely interested in seeing where this goes, but have already had two large law firms and one medical facility say no to having it used on their domains because of the advertising content.
Phonr: (773) 491-9019
Phone: (224) 444-0169
E-Mail and DNS Security Specialist
Network Security Specialist
Customer Service Portal: https://portal.chicagonettech.com
Security Blog: http://networkbastion.blogspot.com/
Web and E-Mail Hosting, E-Mail Security and Consulting