Kerberos FTP ticket filename

Tiago Elvas tiagoelvas at
Mon May 20 07:35:05 EDT 2013

Hi all,

I am having a problem here with the FTP authentication using Kerberos.
What is happening is that when I connect from host_A to host_B using ftp,
the acquired ticket (in host_B) is being stored as "/tmp/krb5cc_503_z2fgka".

I also had this problem in SSH logins, and it seems to be related to a
bug/feature of the PAM. To fix it, I appended a piece of code in
"/etc/profile" to rename the ticket file and set the "$KRB5CCNAME"
accordingly. However this won't fix my problem with the FTP connections.

Apart from this, the system creates a new ticket for each new connection
(as expected) but does not destroy it.

Can anybody give me a hand on this topic?
Thanks in advance.

Best regards,

More information about the Kerberos mailing list