Thank you for your feedback!
Regular NTP is generally useless. It is like using HTTP instead of HTTPS. C'mon it is 2025.
I personally had situations (i was traveling), when ISP intercepted NTP when it detected DoT to prevent user from bypassing DNS based blocking.
GL team should force NTS by default. I don't think even other options should be.
Actually, even plain DNS is bad. Because, once more, there are some ISPs who abuse their power and record/intercept such connections. By the way, I will open separate request for encrypted DNS by default.