Disable TLS 1.0 and 1.1 for NGINX and PostgreSQL

As part of our TLS Everywhere initiative, @stanhu suggested that TLS 1.0 and 1.1 options can be disabled on NGINX and PostgreSQL. Relevant issue:

https://gitlab.com/gitlab-com/gl-security/engineering/issues/206

/cc @joshlambert