Oct 30 10:19:19 prd-ubuntu1804-docker-4c-4g-9096 passwd[934]: password for 'ubuntu' changed by 'root'
Oct 30 10:19:19 prd-ubuntu1804-docker-4c-4g-9096 systemd-logind[992]: Watching system buttons on /dev/input/event0 (Power Button)
Oct 30 10:19:19 prd-ubuntu1804-docker-4c-4g-9096 systemd-logind[992]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Oct 30 10:19:19 prd-ubuntu1804-docker-4c-4g-9096 systemd-logind[992]: New seat seat0.
Oct 30 10:19:19 prd-ubuntu1804-docker-4c-4g-9096 sshd[1103]: Server listening on 0.0.0.0 port 22.
Oct 30 10:19:19 prd-ubuntu1804-docker-4c-4g-9096 sshd[1103]: Server listening on :: port 22.
Oct 30 10:19:22 prd-ubuntu1804-docker-4c-4g-9096 sshd[1412]: Did not receive identification string from 10.32.4.5 port 48294
Oct 30 10:19:30 prd-ubuntu1804-docker-4c-4g-9096 sshd[1469]: Invalid user jenkins from 10.32.4.5 port 48306
Oct 30 10:19:30 prd-ubuntu1804-docker-4c-4g-9096 sshd[1469]: Received disconnect from 10.32.4.5 port 48306:11: Closed due to user request. [preauth]
Oct 30 10:19:30 prd-ubuntu1804-docker-4c-4g-9096 sshd[1469]: Disconnected from invalid user jenkins 10.32.4.5 port 48306 [preauth]
Oct 30 10:19:32 prd-ubuntu1804-docker-4c-4g-9096 sshd[1473]: Invalid user jenkins from 10.32.4.5 port 48316
Oct 30 10:19:32 prd-ubuntu1804-docker-4c-4g-9096 sshd[1473]: Received disconnect from 10.32.4.5 port 48316:11: Closed due to user request. [preauth]
Oct 30 10:19:32 prd-ubuntu1804-docker-4c-4g-9096 sshd[1473]: Disconnected from invalid user jenkins 10.32.4.5 port 48316 [preauth]
Oct 30 10:19:34 prd-ubuntu1804-docker-4c-4g-9096 sshd[1475]: Invalid user jenkins from 10.32.4.5 port 48326
Oct 30 10:19:34 prd-ubuntu1804-docker-4c-4g-9096 sshd[1475]: Received disconnect from 10.32.4.5 port 48326:11: Closed due to user request. [preauth]
Oct 30 10:19:34 prd-ubuntu1804-docker-4c-4g-9096 sshd[1475]: Disconnected from invalid user jenkins 10.32.4.5 port 48326 [preauth]
Oct 30 10:19:37 prd-ubuntu1804-docker-4c-4g-9096 sshd[1477]: Invalid user jenkins from 10.32.4.5 port 48330
Oct 30 10:19:37 prd-ubuntu1804-docker-4c-4g-9096 sshd[1477]: Received disconnect from 10.32.4.5 port 48330:11: Closed due to user request. [preauth]
Oct 30 10:19:37 prd-ubuntu1804-docker-4c-4g-9096 sshd[1477]: Disconnected from invalid user jenkins 10.32.4.5 port 48330 [preauth]
Oct 30 10:19:39 prd-ubuntu1804-docker-4c-4g-9096 sshd[1479]: Invalid user jenkins from 10.32.4.5 port 48338
Oct 30 10:19:39 prd-ubuntu1804-docker-4c-4g-9096 sshd[1479]: Received disconnect from 10.32.4.5 port 48338:11: Closed due to user request. [preauth]
Oct 30 10:19:39 prd-ubuntu1804-docker-4c-4g-9096 sshd[1479]: Disconnected from invalid user jenkins 10.32.4.5 port 48338 [preauth]
Oct 30 10:19:41 prd-ubuntu1804-docker-4c-4g-9096 sshd[1497]: Invalid user jenkins from 10.32.4.5 port 48352
Oct 30 10:19:41 prd-ubuntu1804-docker-4c-4g-9096 sshd[1497]: Received disconnect from 10.32.4.5 port 48352:11: Closed due to user request. [preauth]
Oct 30 10:19:41 prd-ubuntu1804-docker-4c-4g-9096 sshd[1497]: Disconnected from invalid user jenkins 10.32.4.5 port 48352 [preauth]
Oct 30 10:19:43 prd-ubuntu1804-docker-4c-4g-9096 sshd[1715]: Invalid user jenkins from 10.32.4.5 port 48366
Oct 30 10:19:43 prd-ubuntu1804-docker-4c-4g-9096 sshd[1715]: Received disconnect from 10.32.4.5 port 48366:11: Closed due to user request. [preauth]
Oct 30 10:19:43 prd-ubuntu1804-docker-4c-4g-9096 sshd[1715]: Disconnected from invalid user jenkins 10.32.4.5 port 48366 [preauth]
Oct 30 10:19:46 prd-ubuntu1804-docker-4c-4g-9096 sshd[1754]: Invalid user jenkins from 10.32.4.5 port 48382
Oct 30 10:19:46 prd-ubuntu1804-docker-4c-4g-9096 sshd[1754]: Received disconnect from 10.32.4.5 port 48382:11: Closed due to user request. [preauth]
Oct 30 10:19:46 prd-ubuntu1804-docker-4c-4g-9096 sshd[1754]: Disconnected from invalid user jenkins 10.32.4.5 port 48382 [preauth]
Oct 30 10:19:48 prd-ubuntu1804-docker-4c-4g-9096 sshd[1772]: Invalid user jenkins from 10.32.4.5 port 48390
Oct 30 10:19:48 prd-ubuntu1804-docker-4c-4g-9096 useradd[1774]: new group: name=jenkins, GID=1001
Oct 30 10:19:48 prd-ubuntu1804-docker-4c-4g-9096 useradd[1774]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Oct 30 10:19:48 prd-ubuntu1804-docker-4c-4g-9096 sshd[1772]: Received disconnect from 10.32.4.5 port 48390:11: Closed due to user request. [preauth]
Oct 30 10:19:48 prd-ubuntu1804-docker-4c-4g-9096 sshd[1772]: Disconnected from invalid user jenkins 10.32.4.5 port 48390 [preauth]
Oct 30 10:19:48 prd-ubuntu1804-docker-4c-4g-9096 usermod[1781]: add 'jenkins' to group 'docker'
Oct 30 10:19:48 prd-ubuntu1804-docker-4c-4g-9096 usermod[1781]: add 'jenkins' to shadow group 'docker'
Oct 30 10:19:50 prd-ubuntu1804-docker-4c-4g-9096 sshd[1824]: Accepted publickey for jenkins from 10.32.4.5 port 48402 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Oct 30 10:19:50 prd-ubuntu1804-docker-4c-4g-9096 sshd[1824]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Oct 30 10:19:50 prd-ubuntu1804-docker-4c-4g-9096 systemd-logind[992]: New session 1 of user jenkins.
Oct 30 10:19:50 prd-ubuntu1804-docker-4c-4g-9096 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Oct 30 10:20:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[2122]: pam_unix(cron:session): session opened for user root by (uid=0)
Oct 30 10:20:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[2122]: pam_unix(cron:session): session closed for user root
Oct 30 10:21:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[2603]: pam_unix(cron:session): session opened for user root by (uid=0)
Oct 30 10:21:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[2603]: pam_unix(cron:session): session closed for user root
Oct 30 10:22:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[4636]: pam_unix(cron:session): session opened for user root by (uid=0)
Oct 30 10:22:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[4636]: pam_unix(cron:session): session closed for user root
Oct 30 10:23:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[10939]: pam_unix(cron:session): session opened for user root by (uid=0)
Oct 30 10:23:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[10939]: pam_unix(cron:session): session closed for user root
Oct 30 10:24:02 prd-ubuntu1804-docker-4c-4g-9096 CRON[11007]: pam_unix(cron:session): session opened for user root by (uid=0)
Oct 30 10:24:02 prd-ubuntu1804-docker-4c-4g-9096 CRON[11007]: pam_unix(cron:session): session closed for user root
Oct 30 10:25:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[11031]: pam_unix(cron:session): session opened for user root by (uid=0)
Oct 30 10:25:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[11031]: pam_unix(cron:session): session closed for user root
Oct 30 10:26:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[11035]: pam_unix(cron:session): session opened for user root by (uid=0)
Oct 30 10:26:01 prd-ubuntu1804-docker-4c-4g-9096 CRON[11035]: pam_unix(cron:session): session closed for user root
Oct 30 10:26:51 prd-ubuntu1804-docker-4c-4g-9096 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/aiml-fw-athp-data-extraction-docker-docker-merge-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Oct 30 10:26:51 prd-ubuntu1804-docker-4c-4g-9096 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)