The knife bootstrap command in chef leaks the validator.pem private RSA key to /var/log/messages.