Yes, that's why I used the term “secure” rather than “cryptographic”. RNG requirements for DoS resistance are somewhere in between. Many otherwise perfectly acceptable RNGs are too easily predicted for this application, as their internal state is too small. OTOH you don't need quite as high requirements as a cryptographic RNG