I'm in the middle of setting up a webspace service (using VPN and sharepoints through samba) to allow people to connect through a vpn and get access to their own network drives.
While different people are connected to the VPN, they are obviously in the same address pool (or LAN) as other users from around the world. Can those internal users sniff / hack into each other's computers just as easy as if there was no VPN, or does the VPN offer better security in that scenario. The only obvious thing it will do, is block out anyone who is not logged into the VPN itself, but that doesn't necessarily mean that our users are going to be saints ...
Any suggestions or feedback on security for this topic would be greatly appreciated.