Jan  8 10:18:47 prd-ubuntu1804-docker-4c-4g-1294 passwd[929]: password for 'ubuntu' changed by 'root'
Jan  8 10:18:47 prd-ubuntu1804-docker-4c-4g-1294 systemd-logind[965]: Watching system buttons on /dev/input/event0 (Power Button)
Jan  8 10:18:47 prd-ubuntu1804-docker-4c-4g-1294 systemd-logind[965]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Jan  8 10:18:47 prd-ubuntu1804-docker-4c-4g-1294 systemd-logind[965]: New seat seat0.
Jan  8 10:18:47 prd-ubuntu1804-docker-4c-4g-1294 sshd[1246]: Server listening on 0.0.0.0 port 22.
Jan  8 10:18:47 prd-ubuntu1804-docker-4c-4g-1294 sshd[1246]: Server listening on :: port 22.
Jan  8 10:18:50 prd-ubuntu1804-docker-4c-4g-1294 sshd[1449]: Did not receive identification string from 10.32.4.5 port 47064
Jan  8 10:18:58 prd-ubuntu1804-docker-4c-4g-1294 sshd[1530]: Invalid user jenkins from 10.32.4.5 port 47072
Jan  8 10:18:58 prd-ubuntu1804-docker-4c-4g-1294 sshd[1530]: Received disconnect from 10.32.4.5 port 47072:11: Closed due to user request. [preauth]
Jan  8 10:18:58 prd-ubuntu1804-docker-4c-4g-1294 sshd[1530]: Disconnected from invalid user jenkins 10.32.4.5 port 47072 [preauth]
Jan  8 10:19:00 prd-ubuntu1804-docker-4c-4g-1294 sshd[1534]: Invalid user jenkins from 10.32.4.5 port 47076
Jan  8 10:19:00 prd-ubuntu1804-docker-4c-4g-1294 sshd[1534]: Received disconnect from 10.32.4.5 port 47076:11: Closed due to user request. [preauth]
Jan  8 10:19:00 prd-ubuntu1804-docker-4c-4g-1294 sshd[1534]: Disconnected from invalid user jenkins 10.32.4.5 port 47076 [preauth]
Jan  8 10:19:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[1537]: pam_unix(cron:session): session opened for user root by (uid=0)
Jan  8 10:19:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[1537]: pam_unix(cron:session): session closed for user root
Jan  8 10:19:02 prd-ubuntu1804-docker-4c-4g-1294 sshd[1545]: Invalid user jenkins from 10.32.4.5 port 47082
Jan  8 10:19:02 prd-ubuntu1804-docker-4c-4g-1294 sshd[1545]: Received disconnect from 10.32.4.5 port 47082:11: Closed due to user request. [preauth]
Jan  8 10:19:02 prd-ubuntu1804-docker-4c-4g-1294 sshd[1545]: Disconnected from invalid user jenkins 10.32.4.5 port 47082 [preauth]
Jan  8 10:19:04 prd-ubuntu1804-docker-4c-4g-1294 sshd[1547]: Invalid user jenkins from 10.32.4.5 port 47084
Jan  8 10:19:04 prd-ubuntu1804-docker-4c-4g-1294 sshd[1547]: Received disconnect from 10.32.4.5 port 47084:11: Closed due to user request. [preauth]
Jan  8 10:19:04 prd-ubuntu1804-docker-4c-4g-1294 sshd[1547]: Disconnected from invalid user jenkins 10.32.4.5 port 47084 [preauth]
Jan  8 10:19:06 prd-ubuntu1804-docker-4c-4g-1294 sshd[1549]: Invalid user jenkins from 10.32.4.5 port 47086
Jan  8 10:19:07 prd-ubuntu1804-docker-4c-4g-1294 sshd[1549]: Received disconnect from 10.32.4.5 port 47086:11: Closed due to user request. [preauth]
Jan  8 10:19:07 prd-ubuntu1804-docker-4c-4g-1294 sshd[1549]: Disconnected from invalid user jenkins 10.32.4.5 port 47086 [preauth]
Jan  8 10:19:09 prd-ubuntu1804-docker-4c-4g-1294 sshd[1568]: Invalid user jenkins from 10.32.4.5 port 47088
Jan  8 10:19:09 prd-ubuntu1804-docker-4c-4g-1294 sshd[1568]: Received disconnect from 10.32.4.5 port 47088:11: Closed due to user request. [preauth]
Jan  8 10:19:09 prd-ubuntu1804-docker-4c-4g-1294 sshd[1568]: Disconnected from invalid user jenkins 10.32.4.5 port 47088 [preauth]
Jan  8 10:19:11 prd-ubuntu1804-docker-4c-4g-1294 sshd[1786]: Invalid user jenkins from 10.32.4.5 port 47090
Jan  8 10:19:11 prd-ubuntu1804-docker-4c-4g-1294 sshd[1786]: Received disconnect from 10.32.4.5 port 47090:11: Closed due to user request. [preauth]
Jan  8 10:19:11 prd-ubuntu1804-docker-4c-4g-1294 sshd[1786]: Disconnected from invalid user jenkins 10.32.4.5 port 47090 [preauth]
Jan  8 10:19:13 prd-ubuntu1804-docker-4c-4g-1294 sshd[1825]: Invalid user jenkins from 10.32.4.5 port 47092
Jan  8 10:19:13 prd-ubuntu1804-docker-4c-4g-1294 sshd[1825]: Received disconnect from 10.32.4.5 port 47092:11: Closed due to user request. [preauth]
Jan  8 10:19:13 prd-ubuntu1804-docker-4c-4g-1294 sshd[1825]: Disconnected from invalid user jenkins 10.32.4.5 port 47092 [preauth]
Jan  8 10:19:15 prd-ubuntu1804-docker-4c-4g-1294 sshd[1843]: Invalid user jenkins from 10.32.4.5 port 47096
Jan  8 10:19:15 prd-ubuntu1804-docker-4c-4g-1294 useradd[1845]: new group: name=jenkins, GID=1001
Jan  8 10:19:15 prd-ubuntu1804-docker-4c-4g-1294 useradd[1845]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Jan  8 10:19:15 prd-ubuntu1804-docker-4c-4g-1294 sshd[1843]: Received disconnect from 10.32.4.5 port 47096:11: Closed due to user request. [preauth]
Jan  8 10:19:15 prd-ubuntu1804-docker-4c-4g-1294 sshd[1843]: Disconnected from invalid user jenkins 10.32.4.5 port 47096 [preauth]
Jan  8 10:19:15 prd-ubuntu1804-docker-4c-4g-1294 usermod[1852]: add 'jenkins' to group 'docker'
Jan  8 10:19:15 prd-ubuntu1804-docker-4c-4g-1294 usermod[1852]: add 'jenkins' to shadow group 'docker'
Jan  8 10:19:17 prd-ubuntu1804-docker-4c-4g-1294 sshd[1886]: Accepted publickey for jenkins from 10.32.4.5 port 47098 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Jan  8 10:19:17 prd-ubuntu1804-docker-4c-4g-1294 sshd[1886]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Jan  8 10:19:17 prd-ubuntu1804-docker-4c-4g-1294 systemd-logind[965]: New session 2 of user jenkins.
Jan  8 10:19:17 prd-ubuntu1804-docker-4c-4g-1294 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Jan  8 10:20:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[2440]: pam_unix(cron:session): session opened for user root by (uid=0)
Jan  8 10:20:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[2440]: pam_unix(cron:session): session closed for user root
Jan  8 10:21:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[3565]: pam_unix(cron:session): session opened for user root by (uid=0)
Jan  8 10:21:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[3565]: pam_unix(cron:session): session closed for user root
Jan  8 10:22:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[8200]: pam_unix(cron:session): session opened for user root by (uid=0)
Jan  8 10:22:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[8200]: pam_unix(cron:session): session closed for user root
Jan  8 10:23:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[8232]: pam_unix(cron:session): session opened for user root by (uid=0)
Jan  8 10:23:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[8232]: pam_unix(cron:session): session closed for user root
Jan  8 10:24:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[8430]: pam_unix(cron:session): session opened for user root by (uid=0)
Jan  8 10:24:01 prd-ubuntu1804-docker-4c-4g-1294 CRON[8430]: pam_unix(cron:session): session closed for user root
Jan  8 10:24:17 prd-ubuntu1804-docker-4c-4g-1294 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/aiml-fw-athp-data-extraction-docker-docker-merge-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Jan  8 10:24:17 prd-ubuntu1804-docker-4c-4g-1294 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)