I think the basis for/reason for restricting running apps is important to ship a less generic answer. Since you haven't posted much info to go on: if you're looking for examples of a /proc handler, search for and look at Nabou and Procwatch, if it's policy-based have a look at Systrace, and if you're into ACL's check out kernel patches like LIDS or Grsecurity.
|