Aug 21 10:18:38 prd-ubuntu1804-docker-4c-4g-3020 passwd[955]: password for 'ubuntu' changed by 'root'
Aug 21 10:18:38 prd-ubuntu1804-docker-4c-4g-3020 systemd-logind[992]: Watching system buttons on /dev/input/event0 (Power Button)
Aug 21 10:18:38 prd-ubuntu1804-docker-4c-4g-3020 systemd-logind[992]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Aug 21 10:18:38 prd-ubuntu1804-docker-4c-4g-3020 systemd-logind[992]: New seat seat0.
Aug 21 10:18:39 prd-ubuntu1804-docker-4c-4g-3020 sshd[1273]: Server listening on 0.0.0.0 port 22.
Aug 21 10:18:39 prd-ubuntu1804-docker-4c-4g-3020 sshd[1273]: Server listening on :: port 22.
Aug 21 10:18:42 prd-ubuntu1804-docker-4c-4g-3020 sshd[1481]: Did not receive identification string from 10.32.4.5 port 52940
Aug 21 10:18:50 prd-ubuntu1804-docker-4c-4g-3020 sshd[1552]: Invalid user jenkins from 10.32.4.5 port 52948
Aug 21 10:18:50 prd-ubuntu1804-docker-4c-4g-3020 sshd[1552]: Received disconnect from 10.32.4.5 port 52948:11: Closed due to user request. [preauth]
Aug 21 10:18:50 prd-ubuntu1804-docker-4c-4g-3020 sshd[1552]: Disconnected from invalid user jenkins 10.32.4.5 port 52948 [preauth]
Aug 21 10:18:52 prd-ubuntu1804-docker-4c-4g-3020 sshd[1556]: Invalid user jenkins from 10.32.4.5 port 52952
Aug 21 10:18:52 prd-ubuntu1804-docker-4c-4g-3020 sshd[1556]: Received disconnect from 10.32.4.5 port 52952:11: Closed due to user request. [preauth]
Aug 21 10:18:52 prd-ubuntu1804-docker-4c-4g-3020 sshd[1556]: Disconnected from invalid user jenkins 10.32.4.5 port 52952 [preauth]
Aug 21 10:18:54 prd-ubuntu1804-docker-4c-4g-3020 sshd[1558]: Invalid user jenkins from 10.32.4.5 port 52954
Aug 21 10:18:54 prd-ubuntu1804-docker-4c-4g-3020 sshd[1558]: Received disconnect from 10.32.4.5 port 52954:11: Closed due to user request. [preauth]
Aug 21 10:18:54 prd-ubuntu1804-docker-4c-4g-3020 sshd[1558]: Disconnected from invalid user jenkins 10.32.4.5 port 52954 [preauth]
Aug 21 10:18:56 prd-ubuntu1804-docker-4c-4g-3020 sshd[1560]: Invalid user jenkins from 10.32.4.5 port 52956
Aug 21 10:18:56 prd-ubuntu1804-docker-4c-4g-3020 sshd[1560]: Received disconnect from 10.32.4.5 port 52956:11: Closed due to user request. [preauth]
Aug 21 10:18:56 prd-ubuntu1804-docker-4c-4g-3020 sshd[1560]: Disconnected from invalid user jenkins 10.32.4.5 port 52956 [preauth]
Aug 21 10:18:58 prd-ubuntu1804-docker-4c-4g-3020 sshd[1562]: Invalid user jenkins from 10.32.4.5 port 52958
Aug 21 10:18:58 prd-ubuntu1804-docker-4c-4g-3020 sshd[1562]: Received disconnect from 10.32.4.5 port 52958:11: Closed due to user request. [preauth]
Aug 21 10:18:58 prd-ubuntu1804-docker-4c-4g-3020 sshd[1562]: Disconnected from invalid user jenkins 10.32.4.5 port 52958 [preauth]
Aug 21 10:19:01 prd-ubuntu1804-docker-4c-4g-3020 sshd[1639]: Invalid user jenkins from 10.32.4.5 port 52960
Aug 21 10:19:01 prd-ubuntu1804-docker-4c-4g-3020 sshd[1639]: Received disconnect from 10.32.4.5 port 52960:11: Closed due to user request. [preauth]
Aug 21 10:19:01 prd-ubuntu1804-docker-4c-4g-3020 sshd[1639]: Disconnected from invalid user jenkins 10.32.4.5 port 52960 [preauth]
Aug 21 10:19:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[1682]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 21 10:19:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[1682]: pam_unix(cron:session): session closed for user root
Aug 21 10:19:03 prd-ubuntu1804-docker-4c-4g-3020 sshd[1812]: Invalid user jenkins from 10.32.4.5 port 52962
Aug 21 10:19:03 prd-ubuntu1804-docker-4c-4g-3020 sshd[1812]: Received disconnect from 10.32.4.5 port 52962:11: Closed due to user request. [preauth]
Aug 21 10:19:03 prd-ubuntu1804-docker-4c-4g-3020 sshd[1812]: Disconnected from invalid user jenkins 10.32.4.5 port 52962 [preauth]
Aug 21 10:19:05 prd-ubuntu1804-docker-4c-4g-3020 sshd[1849]: Invalid user jenkins from 10.32.4.5 port 52964
Aug 21 10:19:05 prd-ubuntu1804-docker-4c-4g-3020 sshd[1849]: Received disconnect from 10.32.4.5 port 52964:11: Closed due to user request. [preauth]
Aug 21 10:19:05 prd-ubuntu1804-docker-4c-4g-3020 sshd[1849]: Disconnected from invalid user jenkins 10.32.4.5 port 52964 [preauth]
Aug 21 10:19:07 prd-ubuntu1804-docker-4c-4g-3020 useradd[1867]: new group: name=jenkins, GID=1001
Aug 21 10:19:07 prd-ubuntu1804-docker-4c-4g-3020 useradd[1867]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Aug 21 10:19:07 prd-ubuntu1804-docker-4c-4g-3020 usermod[1874]: add 'jenkins' to group 'docker'
Aug 21 10:19:07 prd-ubuntu1804-docker-4c-4g-3020 usermod[1874]: add 'jenkins' to shadow group 'docker'
Aug 21 10:19:07 prd-ubuntu1804-docker-4c-4g-3020 sshd[1908]: Accepted publickey for jenkins from 10.32.4.5 port 52966 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Aug 21 10:19:07 prd-ubuntu1804-docker-4c-4g-3020 sshd[1908]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Aug 21 10:19:07 prd-ubuntu1804-docker-4c-4g-3020 systemd-logind[992]: New session 2 of user jenkins.
Aug 21 10:19:07 prd-ubuntu1804-docker-4c-4g-3020 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Aug 21 10:20:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[2646]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 21 10:20:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[2646]: pam_unix(cron:session): session closed for user root
Aug 21 10:21:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[4403]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 21 10:21:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[4403]: pam_unix(cron:session): session closed for user root
Aug 21 10:22:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[8613]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 21 10:22:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[8613]: pam_unix(cron:session): session closed for user root
Aug 21 10:23:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[11071]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 21 10:23:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[11071]: pam_unix(cron:session): session closed for user root
Aug 21 10:24:02 prd-ubuntu1804-docker-4c-4g-3020 CRON[11140]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 21 10:24:02 prd-ubuntu1804-docker-4c-4g-3020 CRON[11140]: pam_unix(cron:session): session closed for user root
Aug 21 10:25:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[11145]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 21 10:25:01 prd-ubuntu1804-docker-4c-4g-3020 CRON[11145]: pam_unix(cron:session): session closed for user root
Aug 21 10:25:36 prd-ubuntu1804-docker-4c-4g-3020 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/aiml-fw-athp-data-extraction-docker-docker-merge-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Aug 21 10:25:36 prd-ubuntu1804-docker-4c-4g-3020 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)