To add to Gracana's comment. M:Tier provides openup tool which will update your base system and packages to match -stable. That way you don't have to patch and compile your kernel yourself.
For trustworthiness of M:Tier, several project developers are employed by M:Tier.
They also make binpatch-ng which helps you create binary patches which you can then distribute around to your machines.