It is VERY important of course. Lots of security measures can not be implemented
when you have only single partition /.
On OpenBSD I have at least / , /swap, /tmp, /var, /usr, /home .
Swap is 2xRAM and is crypted by default on OpenBSD, /tmp and /var are mounted with noexec options. / is mounted with read only option.
You probably want to put at least 3xswap for var in the case of the core damp.
The size of /var, /usr, /home depends on purpose. If you are running mail serer
obviously /var would have to be very big. If you are running file server at a
university /home it will have to be big.
If you are running something as chrooted I would put it on the separate partition.
On OpenBSD if I install Linux applications they their partition is mounted separately.
So on and so forth.
|