kdestroy - destroy Kerberos tickets
kdestroy [-q] [-c cache_name]
The kdestroy utility destroys the user's active Kerberos
authorization tickets by writing zeros to the specified
credentials cache that contains them. If the credentials
cache is not specified, the default credentials cache is
-q Run quietly. Normally kdestroy beeps if it fails to
destroy the user's tickets. The -q flag suppresses
use cache_name as the credentials (ticket) cache name
and location; if this option is not used, the default
cache name and location are used.
The default credentials cache may vary between systems.
If the KRB5CCNAME environment variable is set, its
value is used to name the default ticket cache.
Most installations recommend that you place the kdestroy
command in your .logout file, so that your tickets are des-
troyed automatically when you log out.
Kdestroy uses the following environment variables:
KRB5CCNAME Location of the Kerberos 5 credentials
/tmp/krb5cc_[uid] default location of Kerberos 5 creden-
tials cache ([uid] is the decimal UID of
kinit(1), klist(1), krb5(3)
Only the tickets in the specified credentials cache are des-
troyed. Separate ticket caches are used to hold root
instance and password changing tickets. These should prob-
ably be destroyed too, or all of a user's tickets kept in a
single credentials cache.
Man(1) output converted with