Hello and welcome to LQ, hope you like it here.
I am looking for a piece of code that will allow me to allow/deny run priviledges for processes.
Processes are launched by users. Do you have or expect the boxen to have users that will (try and) launch stuff you don't want to run? If for instance you would have a box whose purpose is shellserver you could add the GRSecurity kernel patch. It can forbid users to launch apps outside the $PATH, deny any socket interaction (client *and* server), etc, etc. My
http://www.linuxquestions.org/linux/...larm_for_Linux contains more hints like Systrace.
Any questions: just ask.