Merge pull request #184 from mkobel/master

configure ciphers for rabbitmq with enabled ssl

CHANGELOG.md

@@ -5,6 +5,8 @@ This project adheres to [Semantic Versioning](http://semver.org/)
 The format is based on [Keep a Changelog](http://keepachangelog.com/).
 
 ## [Unreleased]
+### Fixed
+- RabbitMQ - Configure ciphers when SSL is enabled (@mkobel)
 
 ## [2.6.0] - 2018-07-03
 ### Changed

templates/rabbitmq.config.j2

@@ -6,6 +6,8 @@
                    {certfile,"{{ rabbitmq_config_path }}/ssl/cert.pem"},
                    {keyfile,"{{ rabbitmq_config_path }}/ssl/key.pem"},
                    {verify,verify_peer},
+                   {versions, ['tlsv1.2']},
+                   {ciphers,  [{rsa,aes_256_cbc,sha256}]},
                    {fail_if_no_peer_cert,true}]}
     {% else %}
     {tcp_listeners, [{{ rabbitmq_port }}]}