shisa(1) Shishi database interface




shisa 1.0.2

Manipulate information stored in the Shisa user database.

-h, --help
Print help and exit
-V, --version
Print version and exit


-a, --add
Add realm or principal to database.
-d, --dump
Dump entries in database.
-n, --key-add
Add new key to a principal in database.
Remove a key from a principal in database.
-l, --list
List entries in database.
-m, --modify
Modify principal entry in database.
-r, --remove
Remove realm or principal from database.


-f, --force
Allow removal of non-empty realms. (default=off)
Only dump or list enabled principals. (default=off)
Only dump or list disabled principals. (default=off)
Print cryptographic key and password in hostkey format. (default=off)


-E, --encryption-type=STRING
Override default key encryption type. Valid values include 'aes128', 'aes256', 'aes' (same as 'aes256'), '3des', 'des-md5', 'des-md4', 'des-crc', 'des' (same as 'des-md5'), and 'arcfour'.
Version of key.
Derive key from this password.
Specify key priority, used to differentiate between keys when multiple keys are eligible for use. Higher value means higher priority.
(default is 0, which mean a random key of
the best etype is chosen)
Use a random key. (default)
Use specified salt for deriving key. Defaults to concatenation of realm and (unwrapped) principal name.
Encryption algorithm specific parameter for
password derivation.
Currently only the AES
algorithm can utilize this, where it is interpreted as the iteration count of the PKCS#5 PBKDF2 key deriver.

Other options:

-c, --configuration-file=FILE Use specified configuration file.
-o, --library-options=STRING
Parse string as configuration file statement.
-v, --verbose
Produce verbose output. (default=off)
-q, --quiet
Don't produce any diagnostic output. (default=off)

Mandatory arguments to long options are mandatory for short options too.


Written by Simon Josefsson.


Report bugs to: [email protected]
GNU Shishi home page: <>
General help using GNU software: <>


Copyright © 2013 Simon Josefsson. License GPLv3+: GNU GPL version 3 or later <>.
This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law.