With my limited server OS knowledge, I'm struggling to get my head
round certain things in SBS 2K3! My situation is as follows:

We currently have 6 workstations live on the server and need to add a
further 5. CALs are not a problem as 15 have been bought to accomodate
for additional users. The current workstations are "survey1" through to
"survey4", "internetpc" (for POP3 access to BT Internet e-mail) and
"accounts". The survey workstations frequently require access to each
others documents which is accomplished by sharing their user folder on
the server (rubbish security!).

The additional 5 users will be "officedept1" - "officedept5" and have
created a public share along with a logon script to map the drive (P.

My proposal is to house the survey users in to a "survey" group with
security set up accordingly so that only Authenticated Users in the
"survey" group can access each others documents. Would this be
sufficient security?

As for the office administration users, these will be housed in a
"OfficeDept" group. Is it possible using a GPO (I have downloaded the
Office ADM templates) to assign all users within the "OfficeDept" group
to save their Word/Excel documents to the public share (P?

Lastly, the "accounts" machine only requires access to the Internet but
does run Sage. What security policies should I apply to this user?

Any help is greatly appreciated, TIA