Nico, I don't know what your "risk" is, but if it's a perimeter box running pf and ssh maybe consider running on cflash or usb stick? Or one of those bootable cdroms? I log to a ram fs so I think the only media writes are for ntp.drift, and yes I'm more concerned about the other hardware failing than the OS media.
-George
