Is it not possible to achieve consistency of log files without making the log files binary ? They say it may increase complexity but won't this increase complexity too. People will be really unforgiving if high CPU etc on heavily loaded servers is due to logging.
Syslog already supports different sinks like databases, network. Is it hard to add authentication to those ? I have seen 0MQ with rsyslog being implemented -- so basically you have all the freedom to add all the boilerplate auth you need.
Lastly, I don't see this being used on any desktops, only on servers perhaps.
Also, one of the comments states -- instead of gzcat i will use <tool> .. But for uncompressed text based logs, picking one tool from a plethora is what makes it best.