diff --git a/NEWS b/NEWS
index f037605d06b930fe449a4239cff6463e8fda7627..671047332a50a64c9c7e9316e8dd668d4cf2ef2c 100644
--- a/NEWS
+++ b/NEWS
@@ -1,3 +1,7 @@
+release/001.008 (2015-07-31)
+
+    Remove a duplicate line from audit.rules (adamhl)
+
 release/001.007 (2015-07-29)
 
     Add a filter-syslog file on wheezy machines to ignore complaints about
diff --git a/files/etc/audit/audit.rules b/files/etc/audit/audit.rules
index 1b2020adaeb1e83285f7fb132b961b771fbae568..c08f2f821a530a8e16ce9548ed8e11eea5943c62 100644
--- a/files/etc/audit/audit.rules
+++ b/files/etc/audit/audit.rules
@@ -1,4 +1,4 @@
-# auditctl rules that are loaded whenever the audit daemon is 
+# auditctl rules that are loaded whenever the audit daemon is
 # started via the initscripts.
 
 # First rule - delete all
@@ -21,7 +21,7 @@
 -a exit,always -F arch=b32 -S mkdir -S rmdir -k FILEWRITE
 -a exit,always -F arch=b64 -S mkdir -S rmdir -k FILEWRITE
 
-# The following rules create log entries when the critical system 
+# The following rules create log entries when the critical system
 # files are created or deleted.
 -w /bin -p wa -k binfiles
 -w /sbin -p wa -k binfiles
@@ -34,7 +34,6 @@
 -w /etc/pam.d -p wa -k sysfiles
 -w /etc/passwd -p wa -k sysfiles
 -w /etc/remctl/acl -p wa -k sysfiles
--w /etc/shadow -p wa -k sysfiles
 -w /etc/ssh -p wa -k sysfiles
 -w /etc/shadow -p wa -k sysfiles
 -w /etc/ssh -p wa -k sysfiles