Generally, if you're going to mine bitcoin./store high values (10BTC+) it's recommended that you don't host a node that has access to that address. Most mining sites will move coins immediately or will use an offline/tor connected wallet.
You can configure nodes to mine to a foreign address or produce a script that makes nodes able to immediately send block rewards to another address (these scripts may also be hacked or the reward address in the node can be changed if not constantly monitored).
I'm not an expert in this nodes field, but I don't think bitcoin could be hacked through blockchain if someone send bitcoin to another address.
What do you mean with:
-
host a node that has access to that address? Is this refers to 'only miner'/mining activities?
- configure nodes to mine a
foreign address or produce a script? Foreign address?
- produce a script which may be hacked? In that case, avoid to produce this script.
So for the first one, you could produce a script to basically keep checking the address statuses and if any have any bitcoin in them, that is immediately sent to cold storage. Merely, if the server is hacked, the address in the script could be changed to the address of the hacker.
Foreign address - an address that the node doesn't know the private key of. I've seen commands that do that in bitcoin core to specify a reward address.
If a script is used or a reward address is changed in the core, this means any future rewards would be stolen by a hacker until they are changed back. But it could be continuously changed if there's a hole in the system.
