Ars Technica

NTFS Permissions - Best way to stop people creating crap in root of drive?

Could I pick peoples brains on how they implement NTFS permissions so that for a shared folder, a group can't create random folders or files in the base of that folder, but can read/modify any files ...