diff --git a/modules/nixos/services/caddy.nix b/modules/nixos/services/caddy.nix
index 5caf123..aad6bc8 100644
--- a/modules/nixos/services/caddy.nix
+++ b/modules/nixos/services/caddy.nix
@@ -91,8 +91,16 @@
       );
     };
 
-    # Allows Caddy to serve lower ports (443, 80)
-    systemd.services.caddy.serviceConfig.AmbientCapabilities = "CAP_NET_BIND_SERVICE";
+    systemd.services.caddy.serviceConfig = {
+
+      # Allows Caddy to serve lower ports (443, 80)
+      AmbientCapabilities = "CAP_NET_BIND_SERVICE";
+
+      # Prevent flooding of logs by rate-limiting
+      LogRateLimitIntervalSec = "5s"; # Limit period
+      LogRateLimitBurst = 100; # Limit threshold
+
+    };
 
     # Required for web traffic to reach this machine
     networking.firewall.allowedTCPPorts = [
diff --git a/modules/nixos/system/journald.nix b/modules/nixos/system/journald.nix
index 3855822..aa90987 100644
--- a/modules/nixos/system/journald.nix
+++ b/modules/nixos/system/journald.nix
@@ -4,7 +4,10 @@
   # How long to keep journalctl entries
   # This helps to make sure log disk usage doesn't grow too unwieldy
   services.journald.extraConfig = ''
-    SystemMaxUse=100M
+    SystemMaxUse=4G
+    SystemKeepFree=10G
+    SystemMaxFileSize=128M
+    SystemMaxFiles=500
     MaxFileSec=1month
     MaxRetentionSec=2month
   '';