> On Sun, Mar 15, 2015 at 1:21 PM, Theo de Raadt <dera...@cvs.openbsd.org> > wrote: > > > One day, it would be nice if /var cannot be filled up in a hostile > > fashion... > > > > slightly off-topic, but I routinely make /var and /var/log separate > filesystems (especially on Internet-facing hosts). this might be worth > considering as a default behavior for the installer. it doesn't > completely fix the problem but it at least mitigates one of the more > frequent causes.
With only 14 partitions available, that is a bit of a loss. And unfortunately /var/log is not the only attack surface.