Nov 12 10:18:49 prd-ubuntu1804-docker-4c-4g-8928 passwd[955]: password for 'ubuntu' changed by 'root'
Nov 12 10:18:49 prd-ubuntu1804-docker-4c-4g-8928 systemd-logind[1048]: Watching system buttons on /dev/input/event0 (Power Button)
Nov 12 10:18:49 prd-ubuntu1804-docker-4c-4g-8928 systemd-logind[1048]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Nov 12 10:18:49 prd-ubuntu1804-docker-4c-4g-8928 systemd-logind[1048]: New seat seat0.
Nov 12 10:18:49 prd-ubuntu1804-docker-4c-4g-8928 sshd[1277]: Server listening on 0.0.0.0 port 22.
Nov 12 10:18:49 prd-ubuntu1804-docker-4c-4g-8928 sshd[1277]: Server listening on :: port 22.
Nov 12 10:18:51 prd-ubuntu1804-docker-4c-4g-8928 sshd[1404]: Did not receive identification string from 10.32.4.5 port 49174
Nov 12 10:18:56 prd-ubuntu1804-docker-4c-4g-8928 sshd[1504]: Invalid user jenkins from 10.32.4.5 port 49178
Nov 12 10:18:56 prd-ubuntu1804-docker-4c-4g-8928 sshd[1504]: Received disconnect from 10.32.4.5 port 49178:11: Closed due to user request. [preauth]
Nov 12 10:18:56 prd-ubuntu1804-docker-4c-4g-8928 sshd[1504]: Disconnected from invalid user jenkins 10.32.4.5 port 49178 [preauth]
Nov 12 10:18:58 prd-ubuntu1804-docker-4c-4g-8928 sshd[1514]: Invalid user jenkins from 10.32.4.5 port 49180
Nov 12 10:18:58 prd-ubuntu1804-docker-4c-4g-8928 sshd[1514]: Received disconnect from 10.32.4.5 port 49180:11: Closed due to user request. [preauth]
Nov 12 10:18:58 prd-ubuntu1804-docker-4c-4g-8928 sshd[1514]: Disconnected from invalid user jenkins 10.32.4.5 port 49180 [preauth]
Nov 12 10:19:00 prd-ubuntu1804-docker-4c-4g-8928 sshd[1516]: Invalid user jenkins from 10.32.4.5 port 49188
Nov 12 10:19:00 prd-ubuntu1804-docker-4c-4g-8928 sshd[1516]: Received disconnect from 10.32.4.5 port 49188:11: Closed due to user request. [preauth]
Nov 12 10:19:00 prd-ubuntu1804-docker-4c-4g-8928 sshd[1516]: Disconnected from invalid user jenkins 10.32.4.5 port 49188 [preauth]
Nov 12 10:19:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[1518]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 12 10:19:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[1518]: pam_unix(cron:session): session closed for user root
Nov 12 10:19:02 prd-ubuntu1804-docker-4c-4g-8928 sshd[1526]: Invalid user jenkins from 10.32.4.5 port 49192
Nov 12 10:19:02 prd-ubuntu1804-docker-4c-4g-8928 sshd[1526]: Received disconnect from 10.32.4.5 port 49192:11: Closed due to user request. [preauth]
Nov 12 10:19:02 prd-ubuntu1804-docker-4c-4g-8928 sshd[1526]: Disconnected from invalid user jenkins 10.32.4.5 port 49192 [preauth]
Nov 12 10:19:04 prd-ubuntu1804-docker-4c-4g-8928 sshd[1528]: Invalid user jenkins from 10.32.4.5 port 49194
Nov 12 10:19:04 prd-ubuntu1804-docker-4c-4g-8928 sshd[1528]: Received disconnect from 10.32.4.5 port 49194:11: Closed due to user request. [preauth]
Nov 12 10:19:04 prd-ubuntu1804-docker-4c-4g-8928 sshd[1528]: Disconnected from invalid user jenkins 10.32.4.5 port 49194 [preauth]
Nov 12 10:19:07 prd-ubuntu1804-docker-4c-4g-8928 sshd[1537]: Invalid user jenkins from 10.32.4.5 port 49196
Nov 12 10:19:07 prd-ubuntu1804-docker-4c-4g-8928 sshd[1537]: Received disconnect from 10.32.4.5 port 49196:11: Closed due to user request. [preauth]
Nov 12 10:19:07 prd-ubuntu1804-docker-4c-4g-8928 sshd[1537]: Disconnected from invalid user jenkins 10.32.4.5 port 49196 [preauth]
Nov 12 10:19:09 prd-ubuntu1804-docker-4c-4g-8928 sshd[1539]: Invalid user jenkins from 10.32.4.5 port 49200
Nov 12 10:19:09 prd-ubuntu1804-docker-4c-4g-8928 sshd[1539]: Received disconnect from 10.32.4.5 port 49200:11: Closed due to user request. [preauth]
Nov 12 10:19:09 prd-ubuntu1804-docker-4c-4g-8928 sshd[1539]: Disconnected from invalid user jenkins 10.32.4.5 port 49200 [preauth]
Nov 12 10:19:11 prd-ubuntu1804-docker-4c-4g-8928 sshd[1558]: Invalid user jenkins from 10.32.4.5 port 49202
Nov 12 10:19:11 prd-ubuntu1804-docker-4c-4g-8928 sshd[1558]: Received disconnect from 10.32.4.5 port 49202:11: Closed due to user request. [preauth]
Nov 12 10:19:11 prd-ubuntu1804-docker-4c-4g-8928 sshd[1558]: Disconnected from invalid user jenkins 10.32.4.5 port 49202 [preauth]
Nov 12 10:19:13 prd-ubuntu1804-docker-4c-4g-8928 sshd[1778]: Invalid user jenkins from 10.32.4.5 port 49204
Nov 12 10:19:13 prd-ubuntu1804-docker-4c-4g-8928 sshd[1778]: Received disconnect from 10.32.4.5 port 49204:11: Closed due to user request. [preauth]
Nov 12 10:19:13 prd-ubuntu1804-docker-4c-4g-8928 sshd[1778]: Disconnected from invalid user jenkins 10.32.4.5 port 49204 [preauth]
Nov 12 10:19:15 prd-ubuntu1804-docker-4c-4g-8928 sshd[1819]: Invalid user jenkins from 10.32.4.5 port 49206
Nov 12 10:19:15 prd-ubuntu1804-docker-4c-4g-8928 sshd[1819]: Received disconnect from 10.32.4.5 port 49206:11: Closed due to user request. [preauth]
Nov 12 10:19:15 prd-ubuntu1804-docker-4c-4g-8928 sshd[1819]: Disconnected from invalid user jenkins 10.32.4.5 port 49206 [preauth]
Nov 12 10:19:18 prd-ubuntu1804-docker-4c-4g-8928 sshd[1827]: Invalid user jenkins from 10.32.4.5 port 49208
Nov 12 10:19:18 prd-ubuntu1804-docker-4c-4g-8928 sshd[1827]: Received disconnect from 10.32.4.5 port 49208:11: Closed due to user request. [preauth]
Nov 12 10:19:18 prd-ubuntu1804-docker-4c-4g-8928 sshd[1827]: Disconnected from invalid user jenkins 10.32.4.5 port 49208 [preauth]
Nov 12 10:19:20 prd-ubuntu1804-docker-4c-4g-8928 sshd[1840]: Invalid user jenkins from 10.32.4.5 port 49210
Nov 12 10:19:20 prd-ubuntu1804-docker-4c-4g-8928 sshd[1840]: Received disconnect from 10.32.4.5 port 49210:11: Closed due to user request. [preauth]
Nov 12 10:19:20 prd-ubuntu1804-docker-4c-4g-8928 sshd[1840]: Disconnected from invalid user jenkins 10.32.4.5 port 49210 [preauth]
Nov 12 10:19:20 prd-ubuntu1804-docker-4c-4g-8928 useradd[1855]: new group: name=jenkins, GID=1001
Nov 12 10:19:20 prd-ubuntu1804-docker-4c-4g-8928 useradd[1855]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Nov 12 10:19:20 prd-ubuntu1804-docker-4c-4g-8928 usermod[1862]: add 'jenkins' to group 'docker'
Nov 12 10:19:20 prd-ubuntu1804-docker-4c-4g-8928 usermod[1862]: add 'jenkins' to shadow group 'docker'
Nov 12 10:19:22 prd-ubuntu1804-docker-4c-4g-8928 sshd[1907]: Accepted publickey for jenkins from 10.32.4.5 port 49212 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Nov 12 10:19:22 prd-ubuntu1804-docker-4c-4g-8928 sshd[1907]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Nov 12 10:19:22 prd-ubuntu1804-docker-4c-4g-8928 systemd-logind[1048]: New session 2 of user jenkins.
Nov 12 10:19:22 prd-ubuntu1804-docker-4c-4g-8928 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Nov 12 10:20:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[2406]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 12 10:20:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[2406]: pam_unix(cron:session): session closed for user root
Nov 12 10:21:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[2477]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 12 10:21:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[2477]: pam_unix(cron:session): session closed for user root
Nov 12 10:22:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[3636]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 12 10:22:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[3636]: pam_unix(cron:session): session closed for user root
Nov 12 10:23:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[8186]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 12 10:23:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[8186]: pam_unix(cron:session): session closed for user root
Nov 12 10:24:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[8227]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 12 10:24:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[8227]: pam_unix(cron:session): session closed for user root
Nov 12 10:25:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[8425]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 12 10:25:01 prd-ubuntu1804-docker-4c-4g-8928 CRON[8425]: pam_unix(cron:session): session closed for user root
Nov 12 10:25:42 prd-ubuntu1804-docker-4c-4g-8928 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/aiml-fw-athp-data-extraction-docker-docker-merge-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Nov 12 10:25:42 prd-ubuntu1804-docker-4c-4g-8928 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)