Wise move. Letting any NTP transmissions out is a vulnerability, as you have described. I remove it completely as well.
Maybe I missed something, but the boot partition can and should be encrypted as well (depending on the threat level I suppose). There should be a password for the boot configuration (BIOS), Encrypted boot partition, and…
Wise move. Letting any NTP transmissions out is a vulnerability, as you have described. I remove it completely as well.
Maybe I missed something, but the boot partition can and should be encrypted as well (depending on the threat level I suppose). There should be a password for the boot configuration (BIOS), Encrypted boot partition, and…