Sep  2 16:18:41 prd-ubuntu1804-docker-4c-4g-4059 passwd[929]: password for 'ubuntu' changed by 'root'
Sep  2 16:18:41 prd-ubuntu1804-docker-4c-4g-4059 systemd-logind[1015]: Watching system buttons on /dev/input/event0 (Power Button)
Sep  2 16:18:41 prd-ubuntu1804-docker-4c-4g-4059 systemd-logind[1015]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Sep  2 16:18:41 prd-ubuntu1804-docker-4c-4g-4059 systemd-logind[1015]: New seat seat0.
Sep  2 16:18:41 prd-ubuntu1804-docker-4c-4g-4059 sshd[1244]: Server listening on 0.0.0.0 port 22.
Sep  2 16:18:41 prd-ubuntu1804-docker-4c-4g-4059 sshd[1244]: Server listening on :: port 22.
Sep  2 16:18:45 prd-ubuntu1804-docker-4c-4g-4059 sshd[1458]: Did not receive identification string from 10.32.4.5 port 57310
Sep  2 16:18:50 prd-ubuntu1804-docker-4c-4g-4059 sshd[1521]: Invalid user jenkins from 10.32.4.5 port 57318
Sep  2 16:18:50 prd-ubuntu1804-docker-4c-4g-4059 sshd[1521]: Received disconnect from 10.32.4.5 port 57318:11: Closed due to user request. [preauth]
Sep  2 16:18:50 prd-ubuntu1804-docker-4c-4g-4059 sshd[1521]: Disconnected from invalid user jenkins 10.32.4.5 port 57318 [preauth]
Sep  2 16:18:52 prd-ubuntu1804-docker-4c-4g-4059 sshd[1525]: Invalid user jenkins from 10.32.4.5 port 57340
Sep  2 16:18:52 prd-ubuntu1804-docker-4c-4g-4059 sshd[1525]: Received disconnect from 10.32.4.5 port 57340:11: Closed due to user request. [preauth]
Sep  2 16:18:52 prd-ubuntu1804-docker-4c-4g-4059 sshd[1525]: Disconnected from invalid user jenkins 10.32.4.5 port 57340 [preauth]
Sep  2 16:18:54 prd-ubuntu1804-docker-4c-4g-4059 sshd[1527]: Invalid user jenkins from 10.32.4.5 port 57352
Sep  2 16:18:54 prd-ubuntu1804-docker-4c-4g-4059 sshd[1527]: Received disconnect from 10.32.4.5 port 57352:11: Closed due to user request. [preauth]
Sep  2 16:18:54 prd-ubuntu1804-docker-4c-4g-4059 sshd[1527]: Disconnected from invalid user jenkins 10.32.4.5 port 57352 [preauth]
Sep  2 16:18:57 prd-ubuntu1804-docker-4c-4g-4059 sshd[1529]: Invalid user jenkins from 10.32.4.5 port 57360
Sep  2 16:18:57 prd-ubuntu1804-docker-4c-4g-4059 sshd[1529]: Received disconnect from 10.32.4.5 port 57360:11: Closed due to user request. [preauth]
Sep  2 16:18:57 prd-ubuntu1804-docker-4c-4g-4059 sshd[1529]: Disconnected from invalid user jenkins 10.32.4.5 port 57360 [preauth]
Sep  2 16:18:59 prd-ubuntu1804-docker-4c-4g-4059 sshd[1531]: Invalid user jenkins from 10.32.4.5 port 57372
Sep  2 16:18:59 prd-ubuntu1804-docker-4c-4g-4059 sshd[1531]: Received disconnect from 10.32.4.5 port 57372:11: Closed due to user request. [preauth]
Sep  2 16:18:59 prd-ubuntu1804-docker-4c-4g-4059 sshd[1531]: Disconnected from invalid user jenkins 10.32.4.5 port 57372 [preauth]
Sep  2 16:19:01 prd-ubuntu1804-docker-4c-4g-4059 sshd[1533]: Invalid user jenkins from 10.32.4.5 port 57382
Sep  2 16:19:01 prd-ubuntu1804-docker-4c-4g-4059 sshd[1533]: Received disconnect from 10.32.4.5 port 57382:11: Closed due to user request. [preauth]
Sep  2 16:19:01 prd-ubuntu1804-docker-4c-4g-4059 sshd[1533]: Disconnected from invalid user jenkins 10.32.4.5 port 57382 [preauth]
Sep  2 16:19:01 prd-ubuntu1804-docker-4c-4g-4059 CRON[1535]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  2 16:19:01 prd-ubuntu1804-docker-4c-4g-4059 CRON[1535]: pam_unix(cron:session): session closed for user root
Sep  2 16:19:03 prd-ubuntu1804-docker-4c-4g-4059 sshd[1555]: Invalid user jenkins from 10.32.4.5 port 57394
Sep  2 16:19:03 prd-ubuntu1804-docker-4c-4g-4059 sshd[1555]: Received disconnect from 10.32.4.5 port 57394:11: Closed due to user request. [preauth]
Sep  2 16:19:03 prd-ubuntu1804-docker-4c-4g-4059 sshd[1555]: Disconnected from invalid user jenkins 10.32.4.5 port 57394 [preauth]
Sep  2 16:19:06 prd-ubuntu1804-docker-4c-4g-4059 sshd[1776]: Invalid user jenkins from 10.32.4.5 port 57410
Sep  2 16:19:06 prd-ubuntu1804-docker-4c-4g-4059 sshd[1776]: Received disconnect from 10.32.4.5 port 57410:11: Closed due to user request. [preauth]
Sep  2 16:19:06 prd-ubuntu1804-docker-4c-4g-4059 sshd[1776]: Disconnected from invalid user jenkins 10.32.4.5 port 57410 [preauth]
Sep  2 16:19:08 prd-ubuntu1804-docker-4c-4g-4059 sshd[1829]: Invalid user jenkins from 10.32.4.5 port 57422
Sep  2 16:19:08 prd-ubuntu1804-docker-4c-4g-4059 sshd[1829]: Received disconnect from 10.32.4.5 port 57422:11: Closed due to user request. [preauth]
Sep  2 16:19:08 prd-ubuntu1804-docker-4c-4g-4059 sshd[1829]: Disconnected from invalid user jenkins 10.32.4.5 port 57422 [preauth]
Sep  2 16:19:10 prd-ubuntu1804-docker-4c-4g-4059 sshd[1833]: Invalid user jenkins from 10.32.4.5 port 57428
Sep  2 16:19:10 prd-ubuntu1804-docker-4c-4g-4059 sshd[1833]: Received disconnect from 10.32.4.5 port 57428:11: Closed due to user request. [preauth]
Sep  2 16:19:10 prd-ubuntu1804-docker-4c-4g-4059 sshd[1833]: Disconnected from invalid user jenkins 10.32.4.5 port 57428 [preauth]
Sep  2 16:19:11 prd-ubuntu1804-docker-4c-4g-4059 useradd[1849]: new group: name=jenkins, GID=1001
Sep  2 16:19:11 prd-ubuntu1804-docker-4c-4g-4059 useradd[1849]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Sep  2 16:19:11 prd-ubuntu1804-docker-4c-4g-4059 usermod[1856]: add 'jenkins' to group 'docker'
Sep  2 16:19:11 prd-ubuntu1804-docker-4c-4g-4059 usermod[1856]: add 'jenkins' to shadow group 'docker'
Sep  2 16:19:12 prd-ubuntu1804-docker-4c-4g-4059 sshd[1890]: Accepted publickey for jenkins from 10.32.4.5 port 57434 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Sep  2 16:19:12 prd-ubuntu1804-docker-4c-4g-4059 sshd[1890]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Sep  2 16:19:12 prd-ubuntu1804-docker-4c-4g-4059 systemd-logind[1015]: New session 2 of user jenkins.
Sep  2 16:19:12 prd-ubuntu1804-docker-4c-4g-4059 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Sep  2 16:20:02 prd-ubuntu1804-docker-4c-4g-4059 CRON[2671]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  2 16:20:02 prd-ubuntu1804-docker-4c-4g-4059 CRON[2671]: pam_unix(cron:session): session closed for user root
Sep  2 16:21:01 prd-ubuntu1804-docker-4c-4g-4059 CRON[6698]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  2 16:21:01 prd-ubuntu1804-docker-4c-4g-4059 CRON[6698]: pam_unix(cron:session): session closed for user root
Sep  2 16:21:27 prd-ubuntu1804-docker-4c-4g-4059 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/it-dep-helm-docker-verify-all ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Sep  2 16:21:27 prd-ubuntu1804-docker-4c-4g-4059 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)