Sep 25 10:18:29 prd-ubuntu1804-docker-4c-4g-5942 passwd[931]: password for 'ubuntu' changed by 'root'
Sep 25 10:18:29 prd-ubuntu1804-docker-4c-4g-5942 systemd-logind[1016]: Watching system buttons on /dev/input/event0 (Power Button)
Sep 25 10:18:29 prd-ubuntu1804-docker-4c-4g-5942 systemd-logind[1016]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Sep 25 10:18:29 prd-ubuntu1804-docker-4c-4g-5942 systemd-logind[1016]: New seat seat0.
Sep 25 10:18:29 prd-ubuntu1804-docker-4c-4g-5942 sshd[1252]: Server listening on 0.0.0.0 port 22.
Sep 25 10:18:29 prd-ubuntu1804-docker-4c-4g-5942 sshd[1252]: Server listening on :: port 22.
Sep 25 10:18:32 prd-ubuntu1804-docker-4c-4g-5942 sshd[1480]: Did not receive identification string from 10.32.4.5 port 48488
Sep 25 10:18:40 prd-ubuntu1804-docker-4c-4g-5942 sshd[1523]: Invalid user jenkins from 10.32.4.5 port 48492
Sep 25 10:18:40 prd-ubuntu1804-docker-4c-4g-5942 sshd[1523]: Received disconnect from 10.32.4.5 port 48492:11: Closed due to user request. [preauth]
Sep 25 10:18:40 prd-ubuntu1804-docker-4c-4g-5942 sshd[1523]: Disconnected from invalid user jenkins 10.32.4.5 port 48492 [preauth]
Sep 25 10:18:42 prd-ubuntu1804-docker-4c-4g-5942 sshd[1527]: Invalid user jenkins from 10.32.4.5 port 48494
Sep 25 10:18:42 prd-ubuntu1804-docker-4c-4g-5942 sshd[1527]: Received disconnect from 10.32.4.5 port 48494:11: Closed due to user request. [preauth]
Sep 25 10:18:42 prd-ubuntu1804-docker-4c-4g-5942 sshd[1527]: Disconnected from invalid user jenkins 10.32.4.5 port 48494 [preauth]
Sep 25 10:18:44 prd-ubuntu1804-docker-4c-4g-5942 sshd[1529]: Invalid user jenkins from 10.32.4.5 port 48502
Sep 25 10:18:44 prd-ubuntu1804-docker-4c-4g-5942 sshd[1529]: Received disconnect from 10.32.4.5 port 48502:11: Closed due to user request. [preauth]
Sep 25 10:18:44 prd-ubuntu1804-docker-4c-4g-5942 sshd[1529]: Disconnected from invalid user jenkins 10.32.4.5 port 48502 [preauth]
Sep 25 10:18:46 prd-ubuntu1804-docker-4c-4g-5942 sshd[1531]: Invalid user jenkins from 10.32.4.5 port 48506
Sep 25 10:18:46 prd-ubuntu1804-docker-4c-4g-5942 sshd[1531]: Received disconnect from 10.32.4.5 port 48506:11: Closed due to user request. [preauth]
Sep 25 10:18:46 prd-ubuntu1804-docker-4c-4g-5942 sshd[1531]: Disconnected from invalid user jenkins 10.32.4.5 port 48506 [preauth]
Sep 25 10:18:48 prd-ubuntu1804-docker-4c-4g-5942 sshd[1533]: Invalid user jenkins from 10.32.4.5 port 48508
Sep 25 10:18:48 prd-ubuntu1804-docker-4c-4g-5942 sshd[1533]: Received disconnect from 10.32.4.5 port 48508:11: Closed due to user request. [preauth]
Sep 25 10:18:48 prd-ubuntu1804-docker-4c-4g-5942 sshd[1533]: Disconnected from invalid user jenkins 10.32.4.5 port 48508 [preauth]
Sep 25 10:18:50 prd-ubuntu1804-docker-4c-4g-5942 sshd[1545]: Invalid user jenkins from 10.32.4.5 port 48510
Sep 25 10:18:50 prd-ubuntu1804-docker-4c-4g-5942 sshd[1545]: Received disconnect from 10.32.4.5 port 48510:11: Closed due to user request. [preauth]
Sep 25 10:18:50 prd-ubuntu1804-docker-4c-4g-5942 sshd[1545]: Disconnected from invalid user jenkins 10.32.4.5 port 48510 [preauth]
Sep 25 10:18:53 prd-ubuntu1804-docker-4c-4g-5942 sshd[1776]: Invalid user jenkins from 10.32.4.5 port 48514
Sep 25 10:18:53 prd-ubuntu1804-docker-4c-4g-5942 sshd[1776]: Received disconnect from 10.32.4.5 port 48514:11: Closed due to user request. [preauth]
Sep 25 10:18:53 prd-ubuntu1804-docker-4c-4g-5942 sshd[1776]: Disconnected from invalid user jenkins 10.32.4.5 port 48514 [preauth]
Sep 25 10:18:55 prd-ubuntu1804-docker-4c-4g-5942 sshd[1817]: Invalid user jenkins from 10.32.4.5 port 48516
Sep 25 10:18:56 prd-ubuntu1804-docker-4c-4g-5942 sshd[1817]: Received disconnect from 10.32.4.5 port 48516:11: Closed due to user request. [preauth]
Sep 25 10:18:56 prd-ubuntu1804-docker-4c-4g-5942 sshd[1817]: Disconnected from invalid user jenkins 10.32.4.5 port 48516 [preauth]
Sep 25 10:18:58 prd-ubuntu1804-docker-4c-4g-5942 sshd[1821]: Invalid user jenkins from 10.32.4.5 port 48518
Sep 25 10:18:58 prd-ubuntu1804-docker-4c-4g-5942 sshd[1821]: Received disconnect from 10.32.4.5 port 48518:11: Closed due to user request. [preauth]
Sep 25 10:18:58 prd-ubuntu1804-docker-4c-4g-5942 sshd[1821]: Disconnected from invalid user jenkins 10.32.4.5 port 48518 [preauth]
Sep 25 10:18:58 prd-ubuntu1804-docker-4c-4g-5942 useradd[1837]: new group: name=jenkins, GID=1001
Sep 25 10:18:58 prd-ubuntu1804-docker-4c-4g-5942 useradd[1837]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Sep 25 10:18:58 prd-ubuntu1804-docker-4c-4g-5942 usermod[1844]: add 'jenkins' to group 'docker'
Sep 25 10:18:58 prd-ubuntu1804-docker-4c-4g-5942 usermod[1844]: add 'jenkins' to shadow group 'docker'
Sep 25 10:19:00 prd-ubuntu1804-docker-4c-4g-5942 sshd[1878]: Accepted publickey for jenkins from 10.32.4.5 port 48520 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Sep 25 10:19:00 prd-ubuntu1804-docker-4c-4g-5942 sshd[1878]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Sep 25 10:19:00 prd-ubuntu1804-docker-4c-4g-5942 systemd-logind[1016]: New session 1 of user jenkins.
Sep 25 10:19:00 prd-ubuntu1804-docker-4c-4g-5942 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Sep 25 10:19:02 prd-ubuntu1804-docker-4c-4g-5942 CRON[2083]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 25 10:19:02 prd-ubuntu1804-docker-4c-4g-5942 CRON[2083]: pam_unix(cron:session): session closed for user root
Sep 25 10:20:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[2634]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 25 10:20:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[2634]: pam_unix(cron:session): session closed for user root
Sep 25 10:21:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[4582]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 25 10:21:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[4582]: pam_unix(cron:session): session closed for user root
Sep 25 10:22:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[9906]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 25 10:22:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[9906]: pam_unix(cron:session): session closed for user root
Sep 25 10:23:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[11192]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 25 10:23:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[11192]: pam_unix(cron:session): session closed for user root
Sep 25 10:24:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[11216]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 25 10:24:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[11216]: pam_unix(cron:session): session closed for user root
Sep 25 10:25:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[11415]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 25 10:25:01 prd-ubuntu1804-docker-4c-4g-5942 CRON[11415]: pam_unix(cron:session): session closed for user root
Sep 25 10:25:20 prd-ubuntu1804-docker-4c-4g-5942 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/aiml-fw-athp-data-extraction-docker-docker-merge-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Sep 25 10:25:20 prd-ubuntu1804-docker-4c-4g-5942 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)