Splunk delves into log-search automation

Splunk's software is a specialized data-mining and search tool that digests log files and organizes information so administrators can see how a particular event affects different programs. For instance, an administrator could find out when an e-mail from a particular address arrived and how e-mail routing, virus-checking and spam-filtering software handled it, said Chief Executive and co-founder Michael Baum, who has been vice president of e-commerce services at Yahoo and Infoseek.

Splunk is one of a host of companies hoping to capitalize on the profusion of servers across corporate computer networks. This sprawl, dented only temporarily by the dot-com bubble burst, has meant headaches for administrators trying to keep machines running smoothly and troubleshoot problems.

"This isn't some pie-in-the-sky enterprise software contraption. This is a tool we want to get in the hands of sysadmins and developers who are in the trenches fighting this fight every day," Baum said. The software can process log files from many different servers, he added.

The company is announcing its plans and showing its product at the LinuxWorld Conference and Expo this week, though its software isn't due until the fourth quarter. It runs on Red Hat Enterprise Linux or Fedora, or on Sun Microsystems' Solaris.

special coverage
LinuxWorld SF

Open-source hopefuls join Linux stalwarts to talk shop and hawk wares at the San Francisco show.

The company will give a lower-end version of its product away for free. A premium product will be able to span several servers and therefore handle a greater volume of data collection and processing, Baum said. It also will let administrators convert a customized search into a routine monitoring tool.

The company is named after spelunking, the act of exploring caves.