While looking at the Pingback DDoS possibilities, found the following comment here:

There are so many ways to orchestrate a DDOS, I don't know if this is worth bothering with.

Each plugged hole is one possibility less for the bad guys. Leaving a known hole open harms everyone else.