Looking for some help on a special XP config

I have 5 PCs to deploy in a production area. I am looking to lock them down quite a bit. They will be part of a Server 2003 domain, and I would like to use GP to restrict access to the following:
-IE
-Run dialog box
-Install Software
-Install Hardware
-No removable devices (flash drives)
-No DVD-ROM access
-A locked profile (this I have plenty of experience with)

I could also do this via local policy settings as I haven't finalized the image for these machines yet, but I'd rather not have to make a change down the line of 5 different machines if I don't have to.

I've thought about using one of the MS published restricted GPO sets, but haven't had much experience with them. Does anyone have any quick fixes that I'm looking for? Thanks much folks.

 

Maybe I am not reading you right, but since these computers are part of a domain, why aren't you just using active directory group policy to apply to all member computers, or if there are specific users, create a group, add the users to the group, and apply the group policy object to the group?

 

They are already in a group, and I'll be using AD to apply the GP to the clients. Just wondering if someone has some baselines for restricted access PCs they've used before.

 

A limited user shouldn't have rights by default to install software or hardware (just don't make it a power user). IE and the Run dialog, you probably have to use the Group Policy Editor. It'll probably help with the drives, too.