diff --git a/debian/control b/debian/control
index 9faaba3f..43daa794 100644
--- a/debian/control
+++ b/debian/control
@@ -212,14 +212,15 @@ Description: enhances misc security settings
  Removes read, write and execute access for others for all users who have
  home folders under folder /home by running for example
  "chmod o-rwx /home/user"
- during package installation, upgrade or pam. This will be done only once per
+ during package installation, upgrade or pam mkhomedir. This will be done only
+ once per
  folder in folder /home so users who wish to relax file permissions are free to
  do so. This is to protect previously created files in user home folder which
  were previously created with lax file permissions prior installation of this
  package.
  debian/security-misc.postinst
- /usr/share/pam-configs/permission-lockdown-security-misc
  /usr/lib/security-misc/permission-lockdown
+ /usr/share/pam-configs/mkhomedir-security-misc
  .
  access rights relaxations:
  .
diff --git a/usr/share/pam-configs/mkhomedir-security-misc b/usr/share/pam-configs/mkhomedir-security-misc
index a2609269..326013c0 100644
--- a/usr/share/pam-configs/mkhomedir-security-misc
+++ b/usr/share/pam-configs/mkhomedir-security-misc
@@ -4,4 +4,4 @@ Priority: 100
 Session-Type: Additional
 Session-Interactive-Only: yes
 Session:
-	optional	pam_mkhomedir.so
+	optional	pam_mkhomedir.so umask=027
diff --git a/usr/share/pam-configs/permission-lockdown-security-misc b/usr/share/pam-configs/permission-lockdown-security-misc
deleted file mode 100644
index 65be498c..00000000
--- a/usr/share/pam-configs/permission-lockdown-security-misc
+++ /dev/null
@@ -1,6 +0,0 @@
-Name: prevent users from reading other users /home/user folders (by package security-misc)
-Default: yes
-Priority: 50
-Session-Type: Additional
-Session:
-	optional	pam_exec.so	debug stdout seteuid /usr/lib/security-misc/permission-lockdown