Logwatch
from irmadlad@lemmy.world to selfhosted@lemmy.world on 16 May 23:29
https://lemmy.world/post/29778419

In looking for an app to view logs that doesn’t require a lot of overhead, I stumbled upon Logwatch. After running it through it’s paces, it seems to be pretty capable from docker, fail2ban, to sys logs.

I got to wondering if there are other such log viewers I could try that are in the same genre. Logwatch doesn’t greate pretty graphics and dialed out dashboards, but it’s fairly quick, I can view from a range of dates and times, and a variety of logs.

I checked out GoAcces, but it seemed geared towards web related logs like webpage hits, etc. With other options requiring elastisearch, databases, etc, they just seemed heavy for my application.

Anyone have any suggestions. So far, Logwatch does what it says on the tin, but I’m curious what others have tried or still use.

#selfhosted

threaded - newest

moonpiedumplings@programming.dev on 16 May 23:50 next collapse

lnav.org

moonpiedumplings.github.io/playground/ccdc-logs/

I played around with some non-elasticsearch web/gui based solutions as well.

irmadlad@lemmy.world on 17 May 00:11 next collapse

Those two look pretty interesting. Thanks, I’ll check them out.

kernel_panic@feddit.uk on 17 May 06:43 collapse

I can attest to Lnav being great, short of implementing a full Grafana/Loki stack (which is what i use for most of my infrastructure).

Lnav makes log browsing/filtering in the terminal infinitely more enjoyable.

clove@kbin.melroy.org on 16 May 23:54 next collapse

I've been meaning to try Logdy out. Thanks for the reminder!

Xanza@lemm.ee on 17 May 00:14 collapse

lmao this is exactly what I’ve been lookin for… Thanks! I just knew if I was a lazy fuck and sat on my hands someone would do the work for me eventually!

clove@kbin.melroy.org on 17 May 00:25 collapse

Glad to help! XD

AustralianSimon@lemmy.world on 17 May 00:50 next collapse

Dozzle, log forge is a new one I’ve seen but not tried.

fubarx@lemmy.world on 17 May 01:01 next collapse

Saw a posting this past week on SSD drive failures. They’re blaming a lot of it on ‘over-logging’ – too much writing trivial, unnecessary data to logs. I imagine it gets worse when realtime data like OpenTelemetry get involved.

Until I saw that, never thought there was such a thing as ‘too much logging.’ Wonder if there are any ways around it, other than putting logs on spinny disks.

irmadlad@lemmy.world on 17 May 03:00 collapse

Oh I’m not moving that much data to log, and the logs I read are all the normal stuff, nothing exotic. I guess if it were a huge cooperation, that had every Nagios plugin known to man and logging/log-rotating that because of logs, yeah I guess.

non_burglar@lemmy.world on 17 May 01:12 next collapse

Wow, you just gave me flashbacks to my first Linux/unix job in 2008. Tripwire and logwatch reports to review every morning.

woodsb02@lemmy.ml on 17 May 03:28 next collapse

I use Victoria Logs, with vector as the log forwarding agent

Sunbutt23@lemmy.world on 17 May 04:12 next collapse

Cribl Edge? I haven’t tested it for snappy, but I like the nice ui and native docker support.

tuckerm@feddit.online on 17 May 04:26 next collapse

I installed Grafana, simply because it was the only one I had heard of, and I figured that becoming familiar with it was probably useful from a professional development standpoint.

It's definitely massive overkill for my use case, though, and I'm looking to replace it with something else.

oldfart@lemm.ee on 17 May 05:05 collapse

www.pimpmylog.com + rsyslogd, there are docker images