[Go to CFHT Home Page] Man Pages
Back to Software Index  BORDER=0Manpage Top Level
    kdestroy(1) manual page Table of Contents

Name

kdestroy - destroy Kerberos tickets

Synopsis

/usr/bin/kdestroy [ -fnq ]

Availability

SUNWcsu

Description

kdestroy destroys the user’s active Kerberos authorization tickets by writing zeros to the file that contains them. If the ticket file does not exist, kdestroy displays a message to that effect.

After overwriting the file, kdestroy removes the file from the system. The utility displays a message indicating the success or failure of the operation. If kdestroy is unable to destroy the ticket file, it will warn you by making your terminal beep.

In addition to removing the ticket file, kdestroy also invalidates all Kerberos credentials for this user being held in the kernel for use with NFS requests.

If desired, you can place the kdestroy command in your .logout file so that your tickets are destroyed automatically when you logout. Note, however, that doing this will cause NFS operations done on your behalf to fail after you logout.

Options

-f
Do not display the status message.
-n
Do not invalidate NFS credentials in the kernel. The credentials will continue to be valid until their normal expiration time, although new ones cannot be obtained until kinit(1) is run again for this user.
-q
Do not make your terminal beep if kdestroy fails to destroy the tickets.

Files

The file specified by the KRBTKFILE environment variable if set, otherwise
/tmp/tktuid

See Also

kerberos(1) , kinit(1) , klist(1)

Bugs

Only the tickets in the user’s current ticket file are destroyed. Separate ticket files are used to hold root instance and password changing tickets. These files should probably be destroyed too, or all of a user’s tickets should be kept in a single ticket file.

Authors

Steve Miller, MIT Project Athena/Digital Equipment Corporation
Clifford Neuman, MIT Project Athena
Bill Sommerfeld, MIT Project Athena

Table of Contents