本文最后更新于 2025-12-17,文章内容可能已经过时。

修改了如下的Win10网络安全策略,解决输入啥用户名密码均为错误的状态

image.png

image.png

共享网络硬盘NAS的不同Linux内核版本对应着默认不同的安全策略,如果使用不同的安全策略就会导致,无法挂载对方的硬盘(同样的配置,为啥我不可以挂载,也许原因之一很可能就是这个隐藏的小点)。如下摘取自mount.cifs(8)

sec=arg
    Security mode. Allowed values are:

    · none - attempt to connection as a null user (no name)

    · krb5 - Use Kerberos version 5 authentication

    · krb5i - Use Kerberos authentication and forcibly enable packet signing

    · ntlm - Use NTLM password hashing

    · ntlmi - Use NTLM password hashing and force packet signing

    · ntlmv2 - Use NTLMv2 password hashing

    · ntlmv2i - Use NTLMv2 password hashing and force packet signing

    · ntlmssp - Use NTLMv2 password hashing encapsulated in Raw NTLMSSP message

    · ntlmsspi - Use NTLMv2 password hashing encapsulated in Raw NTLMSSP message, and force packet signing

    The default in mainline kernel versions prior to v3.8 was sec=ntlm. In v3.8, the default was changed to sec=ntlmssp.

    If the server requires signing during protocol negotiation, then it may be enabled automatically. Packet signing may also be enabled  automatically  if  it's  enabled  in
    /proc/fs/cifs/SecurityFlags.

mount.cifs(8)使用的安全策略配置与Windows有着相应的对应关系