Each ticket in Kerberos has a timestamp and are subject to time expiration to help prevent these types of attacks. The following answers are incorrect: tunneling attack. This is incorrect because a tunneling attack is an attempt to bypass security and access low-level systems.
Kerberos cannot totally prevent these types of attacks.
destructive attack. This is incorrect because depending on the type of destructive attack, Kerberos cannot prevent someone from physically destroying a server. process attack. This is incorrect because with Kerberos cannot prevent an authorzied individuals from running processes.