Add form to change existing passphrase. Fix some bugs.

We did not allow people to change the passphrase on an existing
key, so add a form and change the backend script to allow it.

Also fix bug that was causing old sslcert derived ssh keys
to be left around.