Aug 10 10:31:30 prd-ubuntu1804-docker-4c-4g-2105 passwd[908]: password for 'ubuntu' changed by 'root'
Aug 10 10:31:30 prd-ubuntu1804-docker-4c-4g-2105 systemd-logind[1010]: Watching system buttons on /dev/input/event0 (Power Button)
Aug 10 10:31:30 prd-ubuntu1804-docker-4c-4g-2105 systemd-logind[1010]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Aug 10 10:31:30 prd-ubuntu1804-docker-4c-4g-2105 systemd-logind[1010]: New seat seat0.
Aug 10 10:31:31 prd-ubuntu1804-docker-4c-4g-2105 sshd[1227]: Server listening on 0.0.0.0 port 22.
Aug 10 10:31:31 prd-ubuntu1804-docker-4c-4g-2105 sshd[1227]: Server listening on :: port 22.
Aug 10 10:31:34 prd-ubuntu1804-docker-4c-4g-2105 sshd[1464]: Did not receive identification string from 10.32.4.5 port 58550
Aug 10 10:31:41 prd-ubuntu1804-docker-4c-4g-2105 sshd[1523]: Invalid user jenkins from 10.32.4.5 port 58554
Aug 10 10:31:41 prd-ubuntu1804-docker-4c-4g-2105 sshd[1523]: Received disconnect from 10.32.4.5 port 58554:11: Closed due to user request. [preauth]
Aug 10 10:31:41 prd-ubuntu1804-docker-4c-4g-2105 sshd[1523]: Disconnected from invalid user jenkins 10.32.4.5 port 58554 [preauth]
Aug 10 10:31:43 prd-ubuntu1804-docker-4c-4g-2105 sshd[1527]: Invalid user jenkins from 10.32.4.5 port 58558
Aug 10 10:31:43 prd-ubuntu1804-docker-4c-4g-2105 sshd[1527]: Received disconnect from 10.32.4.5 port 58558:11: Closed due to user request. [preauth]
Aug 10 10:31:43 prd-ubuntu1804-docker-4c-4g-2105 sshd[1527]: Disconnected from invalid user jenkins 10.32.4.5 port 58558 [preauth]
Aug 10 10:31:45 prd-ubuntu1804-docker-4c-4g-2105 sshd[1529]: Invalid user jenkins from 10.32.4.5 port 58566
Aug 10 10:31:45 prd-ubuntu1804-docker-4c-4g-2105 sshd[1529]: Received disconnect from 10.32.4.5 port 58566:11: Closed due to user request. [preauth]
Aug 10 10:31:45 prd-ubuntu1804-docker-4c-4g-2105 sshd[1529]: Disconnected from invalid user jenkins 10.32.4.5 port 58566 [preauth]
Aug 10 10:31:47 prd-ubuntu1804-docker-4c-4g-2105 sshd[1531]: Invalid user jenkins from 10.32.4.5 port 58568
Aug 10 10:31:47 prd-ubuntu1804-docker-4c-4g-2105 sshd[1531]: Received disconnect from 10.32.4.5 port 58568:11: Closed due to user request. [preauth]
Aug 10 10:31:47 prd-ubuntu1804-docker-4c-4g-2105 sshd[1531]: Disconnected from invalid user jenkins 10.32.4.5 port 58568 [preauth]
Aug 10 10:31:49 prd-ubuntu1804-docker-4c-4g-2105 sshd[1533]: Invalid user jenkins from 10.32.4.5 port 58570
Aug 10 10:31:49 prd-ubuntu1804-docker-4c-4g-2105 sshd[1533]: Received disconnect from 10.32.4.5 port 58570:11: Closed due to user request. [preauth]
Aug 10 10:31:49 prd-ubuntu1804-docker-4c-4g-2105 sshd[1533]: Disconnected from invalid user jenkins 10.32.4.5 port 58570 [preauth]
Aug 10 10:31:51 prd-ubuntu1804-docker-4c-4g-2105 sshd[1535]: Invalid user jenkins from 10.32.4.5 port 58572
Aug 10 10:31:51 prd-ubuntu1804-docker-4c-4g-2105 sshd[1535]: Received disconnect from 10.32.4.5 port 58572:11: Closed due to user request. [preauth]
Aug 10 10:31:51 prd-ubuntu1804-docker-4c-4g-2105 sshd[1535]: Disconnected from invalid user jenkins 10.32.4.5 port 58572 [preauth]
Aug 10 10:31:53 prd-ubuntu1804-docker-4c-4g-2105 sshd[1651]: Invalid user jenkins from 10.32.4.5 port 58576
Aug 10 10:31:53 prd-ubuntu1804-docker-4c-4g-2105 sshd[1651]: Received disconnect from 10.32.4.5 port 58576:11: Closed due to user request. [preauth]
Aug 10 10:31:53 prd-ubuntu1804-docker-4c-4g-2105 sshd[1651]: Disconnected from invalid user jenkins 10.32.4.5 port 58576 [preauth]
Aug 10 10:31:55 prd-ubuntu1804-docker-4c-4g-2105 sshd[1779]: Invalid user jenkins from 10.32.4.5 port 58578
Aug 10 10:31:55 prd-ubuntu1804-docker-4c-4g-2105 sshd[1779]: Received disconnect from 10.32.4.5 port 58578:11: Closed due to user request. [preauth]
Aug 10 10:31:55 prd-ubuntu1804-docker-4c-4g-2105 sshd[1779]: Disconnected from invalid user jenkins 10.32.4.5 port 58578 [preauth]
Aug 10 10:31:58 prd-ubuntu1804-docker-4c-4g-2105 sshd[1813]: Invalid user jenkins from 10.32.4.5 port 58580
Aug 10 10:31:58 prd-ubuntu1804-docker-4c-4g-2105 sshd[1813]: Received disconnect from 10.32.4.5 port 58580:11: Closed due to user request. [preauth]
Aug 10 10:31:58 prd-ubuntu1804-docker-4c-4g-2105 sshd[1813]: Disconnected from invalid user jenkins 10.32.4.5 port 58580 [preauth]
Aug 10 10:31:59 prd-ubuntu1804-docker-4c-4g-2105 useradd[1831]: new group: name=jenkins, GID=1001
Aug 10 10:31:59 prd-ubuntu1804-docker-4c-4g-2105 useradd[1831]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Aug 10 10:31:59 prd-ubuntu1804-docker-4c-4g-2105 usermod[1838]: add 'jenkins' to group 'docker'
Aug 10 10:31:59 prd-ubuntu1804-docker-4c-4g-2105 usermod[1838]: add 'jenkins' to shadow group 'docker'
Aug 10 10:32:00 prd-ubuntu1804-docker-4c-4g-2105 sshd[1872]: Accepted publickey for jenkins from 10.32.4.5 port 58582 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Aug 10 10:32:00 prd-ubuntu1804-docker-4c-4g-2105 sshd[1872]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Aug 10 10:32:00 prd-ubuntu1804-docker-4c-4g-2105 systemd-logind[1010]: New session 1 of user jenkins.
Aug 10 10:32:00 prd-ubuntu1804-docker-4c-4g-2105 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Aug 10 10:32:01 prd-ubuntu1804-docker-4c-4g-2105 CRON[2000]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 10 10:32:01 prd-ubuntu1804-docker-4c-4g-2105 CRON[2000]: pam_unix(cron:session): session closed for user root
Aug 10 10:33:01 prd-ubuntu1804-docker-4c-4g-2105 CRON[2629]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 10 10:33:01 prd-ubuntu1804-docker-4c-4g-2105 CRON[2629]: pam_unix(cron:session): session closed for user root
Aug 10 10:34:01 prd-ubuntu1804-docker-4c-4g-2105 CRON[5790]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 10 10:34:01 prd-ubuntu1804-docker-4c-4g-2105 CRON[5790]: pam_unix(cron:session): session closed for user root
Aug 10 10:35:01 prd-ubuntu1804-docker-4c-4g-2105 CRON[7851]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug 10 10:35:01 prd-ubuntu1804-docker-4c-4g-2105 CRON[7851]: pam_unix(cron:session): session closed for user root
Aug 10 10:35:15 prd-ubuntu1804-docker-4c-4g-2105 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/smo-ves-collector-docker-merge-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Aug 10 10:35:15 prd-ubuntu1804-docker-4c-4g-2105 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)