Skeith is a simple log analyzer and reporter. Specifically, Skeith works for the mod_log_sql module for Apache (it should work for mod_log_mysql too, but thus far testing has only been done with mod_log_sql).
Skeith's main feature that sets it apart from other log analyzers it that it can generate the log file for a given day or month on-the-fly. This way the sysadmin can look at the exact requests that may be questionable or harmful.
Features
- Every page is generated on-the-fly
- Little resource consumption
- Configurable for both MySQL
- Drop-in solution
Summary
Each page shows a vague summary of the selected month or day. Included in the summary are the hosts (IP Addresses) and the users who interacted with the web server in anyway. From there, the end-user can click on any host or user and view their respective detailed information for the given date. At any point in time the end-user can generate the complete log file for the given date. This gives the end-user a complete view of every request as it would have appeared in the original log file.
Simplicity
Skeith is meant to be simplistic. It is not as feature loaded as awstats, but Skeith takes very little configuration. Set the beginning date, how to connect to the database, and Skeith is up and running. There are no commands to run, just unzip and go.
Security
Skeith has the ability to identify possible hackers or script kiddies. This is calculated by a few factors: the returned status codes of Apache, the files requested, how many requests the user/host made, and is the user/host outside the server's network. If Skeith determines that the user/host meets those requirements, they are visibly flagged on display.Because Skeith is so simplistic, it is meant for small servers. It may not scale as well as other solutions. But, If you want to know who is using your web server, what they are doing, and where they are from, then Skeith is right for you.