I was going to share my racoon debug output with a friend to help me =
pinpoint some IPSEC problems, when I noticed that it contained pieces of =
my X509 certificate private key, unencrypted, spelled out. Now, I =
myself don't know which of the many components of an RSA private key =
need to be kept secure (or all of them).
Pieces of an RSA private key:
modulus: <--- this component appears in my racoon DEBUG log
Should its contents be masked in the debug log? If that modulus data is =
compromised, do I need to revoke my certificate?