In light of me working on tpe-lkm, I’ve downloaded the source for the RHEL6 kernel. I noticed right away that there were no patches, that the entire kernel was already pre-patched. I did some googling, and found some others chattering about this, like this one:
A side-project I’ve been working on for enhanced security in distribution kernels. Trusted Path Execution (TPE) is a feature that basically denies users the ability to execute programs that are not owned by the root user, or that they can write to. This prevents all kinds of exploits that would have otherwise rooted your system.
You can find the source code for this work-in-progress here: