But if you pass it on the command-line, then wallet-stealers can just adapt and look in the process list to figure out where the wallet is. If you put it in the bitcoin.conf then the wallet-stealers can also look in the bitcoin.conf to figure out where it is.
I like the 'deterministic wallet' idea that's been floating around (enter a
Seems like there would be a clever way of combining that with white-box cryptography to make the private keys extremely trojan-resistant.
In which case the wallet-stealers will just rewrite the bitcoin address/amount after you press the "send coins" button...
Edited to replace 'password' with 'passphrase'