You're right, I replied too quickly.

> We recently discussed new logging tools at work. It was either a redundant Amazon EC2 cluster with ElasticSearch for $50K monthly, or two large bare metal servers with rsyslog and grep for $400 monthly. The log ingestion and search performance was roughly the same...

If grep has the same search performance as elasticsearch, you should not be using elasticsearch and any comparison is bullshit.

Right, though some people really do reach for heavy-weight tools on datasets that are way too small to justify their use.

But yeah, even ripgrep should get out-performed by any db/search daemon with a decent index.