This is the server you want when Claude needs to debug a Linux box but you're not handing over SSH. It exposes journald streams and file logs over HTTPS with bearer tokens, whitelists, and syslog audit trails. The AI gets list_logs, read_log, search_log, and log_info tools to tail files, grep patterns, and pull metadata. Nothing else. No writes, no shell, no execution. You can run it in quickstart mode for ephemeral testing or install it permanently with systemd. It also supports CLI extensions for wrapping arbitrary tools into MCP and Redis-backed RPC workers if you need lower latency than subprocess spawning. Good for production servers, customer machines, or any environment where least privilege actually matters.