TechNote: PostgreSQL hardening for Daml for PSQL

Basing on our previous Secure DAML Infra example, here we details how to perform some “hardening” steps for daml-for-postgresql including:

  • Creating a new PSQL account and database for ledger and not use default Admin
  • Enabling and enforcing strong authentication and TLS for PSQL connection
  • Some notes on CIS Benchmark and application to Docker image