Insecure handling of ssh keys used to bootstrap clients allows local attackers to potentially gain access to the keys