Yeah the point is to put up moats of security such that it is increasingly cost prohibitive. Disabling your kernel level exploit mitigations does the opposite thus my criticism.