I was looking at fixing the compatibility yesterday, and decided it was just too much of a major redesign effort to get it to properly handle things in the event of an attack.
The plugin will detect properly. The issue is that smb will not restart once stopped and redone for readonly access, which forces you to stop / start the array to get things back to normal. If you can live with that, then there's no reason to uninstall.
That, and since day one, I have always felt that this was a reactive approach vs a proactive approach, and your best line of defense is to stop everything at the source. (And if you were observant, this plugin was never branded under the CA moniker)
To actually answer your question, its doubtful. Hard for me to get into something that I don't use