Jul 10 10:18:41 prd-ubuntu1804-docker-4c-4g-6212 passwd[938]: password for 'ubuntu' changed by 'root'
Jul 10 10:18:41 prd-ubuntu1804-docker-4c-4g-6212 systemd-logind[988]: Watching system buttons on /dev/input/event0 (Power Button)
Jul 10 10:18:41 prd-ubuntu1804-docker-4c-4g-6212 systemd-logind[988]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Jul 10 10:18:41 prd-ubuntu1804-docker-4c-4g-6212 systemd-logind[988]: New seat seat0.
Jul 10 10:18:42 prd-ubuntu1804-docker-4c-4g-6212 sshd[1228]: Server listening on 0.0.0.0 port 22.
Jul 10 10:18:42 prd-ubuntu1804-docker-4c-4g-6212 sshd[1228]: Server listening on :: port 22.
Jul 10 10:18:44 prd-ubuntu1804-docker-4c-4g-6212 sshd[1429]: Did not receive identification string from 10.32.4.5 port 44842
Jul 10 10:18:51 prd-ubuntu1804-docker-4c-4g-6212 sshd[1482]: Invalid user jenkins from 10.32.4.5 port 44852
Jul 10 10:18:51 prd-ubuntu1804-docker-4c-4g-6212 sshd[1482]: Received disconnect from 10.32.4.5 port 44852:11: Closed due to user request. [preauth]
Jul 10 10:18:51 prd-ubuntu1804-docker-4c-4g-6212 sshd[1482]: Disconnected from invalid user jenkins 10.32.4.5 port 44852 [preauth]
Jul 10 10:18:53 prd-ubuntu1804-docker-4c-4g-6212 sshd[1486]: Invalid user jenkins from 10.32.4.5 port 44854
Jul 10 10:18:53 prd-ubuntu1804-docker-4c-4g-6212 sshd[1486]: Received disconnect from 10.32.4.5 port 44854:11: Closed due to user request. [preauth]
Jul 10 10:18:53 prd-ubuntu1804-docker-4c-4g-6212 sshd[1486]: Disconnected from invalid user jenkins 10.32.4.5 port 44854 [preauth]
Jul 10 10:18:55 prd-ubuntu1804-docker-4c-4g-6212 sshd[1488]: Invalid user jenkins from 10.32.4.5 port 44856
Jul 10 10:18:55 prd-ubuntu1804-docker-4c-4g-6212 sshd[1488]: Received disconnect from 10.32.4.5 port 44856:11: Closed due to user request. [preauth]
Jul 10 10:18:55 prd-ubuntu1804-docker-4c-4g-6212 sshd[1488]: Disconnected from invalid user jenkins 10.32.4.5 port 44856 [preauth]
Jul 10 10:18:58 prd-ubuntu1804-docker-4c-4g-6212 sshd[1490]: Invalid user jenkins from 10.32.4.5 port 44858
Jul 10 10:18:58 prd-ubuntu1804-docker-4c-4g-6212 sshd[1490]: Received disconnect from 10.32.4.5 port 44858:11: Closed due to user request. [preauth]
Jul 10 10:18:58 prd-ubuntu1804-docker-4c-4g-6212 sshd[1490]: Disconnected from invalid user jenkins 10.32.4.5 port 44858 [preauth]
Jul 10 10:19:00 prd-ubuntu1804-docker-4c-4g-6212 sshd[1492]: Invalid user jenkins from 10.32.4.5 port 44862
Jul 10 10:19:00 prd-ubuntu1804-docker-4c-4g-6212 sshd[1492]: Received disconnect from 10.32.4.5 port 44862:11: Closed due to user request. [preauth]
Jul 10 10:19:00 prd-ubuntu1804-docker-4c-4g-6212 sshd[1492]: Disconnected from invalid user jenkins 10.32.4.5 port 44862 [preauth]
Jul 10 10:19:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[1495]: pam_unix(cron:session): session opened for user root by (uid=0)
Jul 10 10:19:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[1495]: pam_unix(cron:session): session closed for user root
Jul 10 10:19:02 prd-ubuntu1804-docker-4c-4g-6212 sshd[1502]: Invalid user jenkins from 10.32.4.5 port 44864
Jul 10 10:19:02 prd-ubuntu1804-docker-4c-4g-6212 sshd[1502]: Received disconnect from 10.32.4.5 port 44864:11: Closed due to user request. [preauth]
Jul 10 10:19:02 prd-ubuntu1804-docker-4c-4g-6212 sshd[1502]: Disconnected from invalid user jenkins 10.32.4.5 port 44864 [preauth]
Jul 10 10:19:04 prd-ubuntu1804-docker-4c-4g-6212 sshd[1627]: Invalid user jenkins from 10.32.4.5 port 44866
Jul 10 10:19:04 prd-ubuntu1804-docker-4c-4g-6212 sshd[1627]: Received disconnect from 10.32.4.5 port 44866:11: Closed due to user request. [preauth]
Jul 10 10:19:04 prd-ubuntu1804-docker-4c-4g-6212 sshd[1627]: Disconnected from invalid user jenkins 10.32.4.5 port 44866 [preauth]
Jul 10 10:19:06 prd-ubuntu1804-docker-4c-4g-6212 sshd[1745]: Invalid user jenkins from 10.32.4.5 port 44868
Jul 10 10:19:06 prd-ubuntu1804-docker-4c-4g-6212 sshd[1745]: Received disconnect from 10.32.4.5 port 44868:11: Closed due to user request. [preauth]
Jul 10 10:19:06 prd-ubuntu1804-docker-4c-4g-6212 sshd[1745]: Disconnected from invalid user jenkins 10.32.4.5 port 44868 [preauth]
Jul 10 10:19:08 prd-ubuntu1804-docker-4c-4g-6212 sshd[1779]: Invalid user jenkins from 10.32.4.5 port 44870
Jul 10 10:19:08 prd-ubuntu1804-docker-4c-4g-6212 sshd[1779]: Received disconnect from 10.32.4.5 port 44870:11: Closed due to user request. [preauth]
Jul 10 10:19:08 prd-ubuntu1804-docker-4c-4g-6212 sshd[1779]: Disconnected from invalid user jenkins 10.32.4.5 port 44870 [preauth]
Jul 10 10:19:10 prd-ubuntu1804-docker-4c-4g-6212 useradd[1797]: new group: name=jenkins, GID=1001
Jul 10 10:19:10 prd-ubuntu1804-docker-4c-4g-6212 useradd[1797]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Jul 10 10:19:10 prd-ubuntu1804-docker-4c-4g-6212 usermod[1804]: add 'jenkins' to group 'docker'
Jul 10 10:19:10 prd-ubuntu1804-docker-4c-4g-6212 usermod[1804]: add 'jenkins' to shadow group 'docker'
Jul 10 10:19:10 prd-ubuntu1804-docker-4c-4g-6212 sshd[1838]: Accepted publickey for jenkins from 10.32.4.5 port 44872 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Jul 10 10:19:10 prd-ubuntu1804-docker-4c-4g-6212 sshd[1838]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Jul 10 10:19:10 prd-ubuntu1804-docker-4c-4g-6212 systemd-logind[988]: New session 2 of user jenkins.
Jul 10 10:19:10 prd-ubuntu1804-docker-4c-4g-6212 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Jul 10 10:20:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[2598]: pam_unix(cron:session): session opened for user root by (uid=0)
Jul 10 10:20:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[2598]: pam_unix(cron:session): session closed for user root
Jul 10 10:21:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[4150]: pam_unix(cron:session): session opened for user root by (uid=0)
Jul 10 10:21:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[4150]: pam_unix(cron:session): session closed for user root
Jul 10 10:22:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[9011]: pam_unix(cron:session): session opened for user root by (uid=0)
Jul 10 10:22:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[9011]: pam_unix(cron:session): session closed for user root
Jul 10 10:23:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[11046]: pam_unix(cron:session): session opened for user root by (uid=0)
Jul 10 10:23:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[11046]: pam_unix(cron:session): session closed for user root
Jul 10 10:24:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[11103]: pam_unix(cron:session): session opened for user root by (uid=0)
Jul 10 10:24:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[11103]: pam_unix(cron:session): session closed for user root
Jul 10 10:25:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[11108]: pam_unix(cron:session): session opened for user root by (uid=0)
Jul 10 10:25:01 prd-ubuntu1804-docker-4c-4g-6212 CRON[11108]: pam_unix(cron:session): session closed for user root
Jul 10 10:25:48 prd-ubuntu1804-docker-4c-4g-6212 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/aiml-fw-athp-data-extraction-docker-docker-merge-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Jul 10 10:25:48 prd-ubuntu1804-docker-4c-4g-6212 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)