Slashdot Mirror

← Back to Stories (view on slashdot.org)

Logfiles Made Interesting with glTail

Posted by ryuzaki0 on from the because-you-can dept.

Fudgie writes "My boss claimed it was pretty much impossible to create an entertaining way to visualize server traffic and events in a short time frame, so of course I had to prove him wrong. A weekend of neglecting my family produced a small ruby program which connects to your servers via SSH, grabs and parses data from Apaches access log and Ruby on Rails production log, and displays your traffic and statistics in real-time using a simple OpenGL interface (tested under Linux and Mac OS/X). It's a bit hard to explain over text, so please have a look at fudgie.org for an example movie, and more information."

35 of 131 comments (clear)

  1. Oh dear... by DamonHD · · Score: 5, Funny

    ...I'm afraid that's the nearest I've seen to a simulated pissing contest ever! B^>

    Rgds

    Damon

    --
    http://m.earth.org.uk/
  2. Oh great... by GodlikeDoglike · · Score: 5, Funny

    ...we just made his log screen look like a bukkake flick.

  3. Just took a look at the video by Centurix · · Score: 2, Funny

    And it looks like lots of things taking a wee. Once the site is slashdotted, it'll be a veritable golden shower...

    Nice work though.

    --
    Task Mangler
  4. engineering management 101 by Anonymous Coward · · Score: 5, Funny

    tell the engineer it can't be done

    1. Re:engineering management 101 by H310iSe · · Score: 3, Funny

      Just want to give props, very nice you made my morning. Now to convert this to a heads up display for my helmet and I'm 1 step closer to becoming the motorcycle hacker I always dreamed I could be. And 1 step closer to earning a darwin award...

      --
      closed minded is as closed minded does
  5. Visitorville by Anonymous Coward · · Score: 4, Interesting

    The most entertaining way I ever saw to view logs was Visitorville-its kind of like SimCity meets web logging.

  6. Not "Fudgie", glTail by gumpish · · Score: 4, Informative

    It's pretty obvious that fudgie.org is just the name of the site and glTail is the name of the program.

    1. Re:Not "Fudgie", glTail by nacturation · · Score: 2, Funny

      Also, "slash" is also British slang for "urinate". And backslash is what happens if you urinate onto a parabolic surface?
      --
      Want to improve your Karma? Instead of "Post Anonymously", try the "Post Humously" option.
  7. Re:Looks promising by Fudgie · · Score: 5, Interesting

    Anything put into a logfile could be parsed and shown. I've tried with emails, shoutcast listeners and server logins, but they're not as interesting to show in the movie as I don't have the kind of traffic to make it useful.

  8. Wow ! by cheros · · Score: 4, Interesting

    Obligatory jokes about 'taking the piss' aside, that is brilliant. It's the ultimate 'machine that does ping' (to name an old sketch) to keep management amused, but also provides real data. I bet that screen will go ballistic when you get Slashdotted (also a good way to visualise DDoS, maybe?).

    I was about to say that it's a sort of etherape on steroids, but I've just realised your visualisation could benefit etherape instead (if you don't know etherape, look it up. No tools identifies a virus infection quicker).

    Class, I'm impressed.

    --
    Insert .sig here. Send no money now. Owner may sue, contents will settle. Batteries not included.
    1. Re:Wow ! by bughunter · · Score: 2, Insightful

      I bet that screen will go ballistic when you get Slashdotted

      Look closer. It already is ballistic.

      --
      I can see the fnords!
  9. just a ploy to visualize the slashdot effect by molo · · Score: 2, Interesting

    Notice in the movie that one of the sites being monitored is fudgie.org, which is what is linked to here. This looks like a ploy to visualize the slashdot effect. :) Wonder what that must look like. Might tax the renderer pretty hard. I guess that is one way to get load testing done!

    -molo

    --
    Using your sig line to advertise for friends is lame.
    1. Re:just a ploy to visualize the slashdot effect by Fudgie · · Score: 5, Informative

      Still running at 30 fps with ~25 requests / second.

    2. Re:just a ploy to visualize the slashdot effect by Fudgie · · Score: 5, Interesting

      http://www.fudgie.org/slashdotted.jpg for how that looks.

    3. Re:just a ploy to visualize the slashdot effect by nacturation · · Score: 2, Interesting

      Very nice. One suggestion: rather than have each side's dots fall off at the bottom of the opposite side, how about matching up serving requests with the originating referral so that the dots go to the corresponding spot on the right? Also, if you're not familiar with Flight Patterns it's along the same lines. Borrowing from that, it'd be quite interesting to show a 2D map arranged in a hub and spoke model with the center being the site(s) and the spokes representing the top 10 (or 20... configurable) referring sites with a special case for search engines.

      Well, perhaps I'll have to learn Ruby and hack this myself. The script certainly looks clean enough.

      --
      Want to improve your Karma? Instead of "Post Anonymously", try the "Post Humously" option.
    4. Re:just a ploy to visualize the slashdot effect by Fudgie · · Score: 2, Informative

      Not sure why it stopped for you, I've had it running throughout a slashdotting without any problems at all. Peaked at 3500 req/min and still spewed dots from all the correct places at 30 fps.

    5. Re:just a ploy to visualize the slashdot effect by Fudgie · · Score: 2, Interesting

      Interesting idea. Shouldn't be too hard to try something like that, I already have some code in there doing something similar meant for incoming emails, uploads and other data going into the servers/sites. Try adding :type => 5 to the URL activities for an example. -- Erlend

    6. Re:just a ploy to visualize the slashdot effect by Fudgie · · Score: 2, Informative

      You're correct, and I will be adressing this in the next version. It's currently limited to 1000/FPS per second.

  10. Oh, Sweeeetness! by avirrey · · Score: 5, Funny

    You gotta add an 'Asteroids' ship on the screen that lets you shoot down connections!

    "Oh, look! Bob just logged on... let's get 'em!"

    ...

    "IT support. How can I help you?"

    "Hi, this is Bob..."

    --
    X's and O's for all my foes.

    1. Re:Oh, Sweeeetness! by NFN_NLN · · Score: 2, Funny

      We're finally catching up to movies now... you know the cheesy and disconnected from reality sequence where some hackers enters a system by navigating a 3D maze... and the firewall is a monster you have to literally kill. The movie Masterminds comes to mind.

  11. Re:doom by xappax · · Score: 4, Informative

    perhaps you mean this: http://www.cs.unm.edu/~dlchao/flake/doom/

  12. Compiz for syslogs - ohmygawd ! by udippel · · Score: 2, Funny

    Luckily, I saw the movie before the meltdown of the server. It always pays to be on time. ;)

    For those unlucky and late, actually, you missed a competition of peeing coloured snowflakes from the right versus doing the same from the left.
    Only, the sources on the left are much better at aiming.
    Plus, you have some 'Login ...' scrolling top to bottom; like the cast of a movie.

    Heads up, Fudgie, it is truely the most amazing display of log files ever creeping across my eyes.
    Keep the good work up, and please post again when you have something actually useful for the sysadmin.

    I declare you 'King of Log Candy' !

  13. Ob quote by Provocateur · · Score: 4, Funny

    All I see now is blonde, brunette, redhead.

    --
    WARNING: Smartphones have side effects--most of them undocumented.
  14. Re:Postfix? by Fudgie · · Score: 3, Interesting

    Shouldn't be too hard. I'll cook one up this evening.

  15. GNU GPL by wikinerd · · Score: 2, Informative

    #!/usr/bin/env ruby # gl_tail.rb v0.01 - OpenGL visualization of your server traffic # Copyright 2007 Erlend Simonsen # # Licensed under the GPLv2

    Hey, this is not the correct way to apply the GNU GPL licence. I don't know whether you had very little time available or just don't care, but the correct way is to explain exactly what licence (full title) the program is under and enable the user to find the licence (provide a copy of it and explain that the author of the licence is FSF, giving their address). We nerds of course understand completely what you mean, but other people may have no idea what you are talking about. To learn how to apply GPL on your program read this.

    Good work, by the way. Was there any reason you preferred GPLv2 and not GPLv3? Also from the wording of your licence I think that you intended this to be available only under v2 and not v3 (you say "Licensed under the GPLv2" without a "or any later version" clause).

  16. Re:Pretty, but? by fmobus · · Score: 2, Interesting

    I believe this sort of tool is useful for realtime monitoring of net resources utilization. It can assist you giving graphic clues when something goes out of the usual parameters, like DDoS, slashdotments (sp?), router failure, etc. Depending on information being monitored and how it is displayed, it could also be used for long-term decision like buying more hardware or switching software because the current setup is not handling the load.

    One nice, but more local example is the "duck" activity monitor (a windowmaker classic): a duck floats by a mass of water. If the water gets to high, it means the memory usage is high; if it has too much bubbles, processor is being hit. No percentages nor text, just a simple graphic.

    A place I used to work is now trying to develop something like this: visualizations where you can tell trouble is brewing in a glance. This is useful for them because their services involved a lot of maintenance of third-party networks but having someone dedicated to nanny all systems is "dumb" and error-prone. Their solution consists of multiple screens around the office showing how the systems they are responsible for are behaving.

  17. Sorry, but the boss won this bet by nurb432 · · Score: 2, Insightful

    its still NOT entertaining.. Its more bizzare then anything else.

    --
    ---- Booth was a patriot ----
  18. syslog, not ssh+tail -f by allenw · · Score: 4, Insightful

    Why use ssh + tail -f when one can send the output to a centralized syslog server? There isn't any need to setup an account, keys, etc. when you can have the individual servers consolidate the data for you.

  19. seconded by Cheesey · · Score: 3, Insightful

    Remote syslog also means that your servers are more secure: (a) because it is harder for crackers to falsify remote logs as they need to compromise two machines, not just one; and (b) because your visualisation program doesn't need access to SSH keys for all of the machines it monitors, so a compromise on the visualisation computer doesn't automatically mean that all of the servers can also be compromised. However, you could presumably adapt this tool to use syslog quite easily.

    --
    >north
    You're an immobile computer, remember?
  20. Running glTail on Windows by Mazin07 · · Score: 5, Informative

    If you want to run glTail on Windows:

    1. Use the One-click Ruby installer from rubyforge (not Cygwin ruby)
    2. Make sure to `gem install net-ssh`
    3. Change "require 'glut'" to "require 'glut_prev'" to enable legacy GLUT ruby bindings

    Took me a while to figure this out.

  21. Re:Looks promising by DudeTheMath · · Score: 3, Funny

    So...how many hours of unpaid overtime did your boss get out of you?

    I like getting paid for my awesome work. Kudos, though.

    --
    You save only 59 seconds over 8 miles by going 75 instead of 65. Do you really have to pass that guy? Do the Math!
  22. Re:Wait, what... they're not interesting? by Fudgie · · Score: 5, Interesting

    A lot of my time at work is spent looking at logfiles from webservers, applications servers, and databases looking for things about to break down, but after I introduced this I just need to glance at a screen to instantly see if some server has stopped answering, is taking too long to answer, or is generating way more exceptions than normal. I also add an event (the login text bouncing down the screen in the movie) on each money generating activity, which always amazes marketing people when they walk by.

  23. Google called by Anonymous Coward · · Score: 2, Funny

    They heard about your cool project and want to subject you to a series of tedious interviews, ultimately not offering you a job because you didn't go to stanford.

  24. Re:I hate flash! by Fudgie · · Score: 2, Informative

    Grab the divx version of the movie, then.

  25. Re:Not impressed by Fudgie · · Score: 2, Informative
    Try and install the gem version of net-ssh or change the require_gem to plain old require so you use the packaged net-ssh instead? I've got net/ssh in

    /usr/lib/ruby/gems/1.8/gems/net-ssh-1.0.10/lib/net/ssh
    and

    /var/lib/gems/1.8/gems/net-ssh-1.1.2/lib/net/ssh
    depending on which Ubuntu version I'm running.

    It's not hard, and quite a few have been able to get it running on Linux, OS X and Windows. FreeBSD is still a no-go.