[confighttp] Set explicit `ReadTimeout` and `WriteTimeout` on servers

[mx-psi]

To prevent Slowloris attacks we can explicitly set default values for ReadTimeout and WriteTimeout on net/http.Server.

We may need to go through a feature gate process for this since it's potentially breaking for people.

Reported as part of the recent security audit.