After looking into enabling the CSAM Scanning Tool on my domain, I have come across an article and a blog post discussing Cloudflare’s steps for dealing with this stuff.
Two things stood out to me:
we provide NCMEC with information identifying the hosting provider of the website, contact information for that hosting provider, and the origin IP address where the content at issue can be located.
and the image shown below
I suppose NCMEC is a trusted organization, but the second one is what I am mainly concerned about. I am hosting my website on my own machine, through cloudflare tunnels. What would Cloudflare send back to someone reporting CSAM? As my site is hosted locally, there is no Hosting Provider Name or Hosting Provider Abuse Email.
My main concern is someone filing a false report simply to expose some information about me. Like, would the Hosting Provider Name be shown as my IP Address?
Thanks in advance for your help.