Feb 15 10:31:31 prd-ubuntu1804-docker-4c-4g-402 passwd[928]: password for 'ubuntu' changed by 'root'
Feb 15 10:31:31 prd-ubuntu1804-docker-4c-4g-402 systemd-logind[1018]: Watching system buttons on /dev/input/event0 (Power Button)
Feb 15 10:31:31 prd-ubuntu1804-docker-4c-4g-402 systemd-logind[1018]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Feb 15 10:31:31 prd-ubuntu1804-docker-4c-4g-402 systemd-logind[1018]: New seat seat0.
Feb 15 10:31:32 prd-ubuntu1804-docker-4c-4g-402 sshd[1230]: Server listening on 0.0.0.0 port 22.
Feb 15 10:31:32 prd-ubuntu1804-docker-4c-4g-402 sshd[1230]: Server listening on :: port 22.
Feb 15 10:31:35 prd-ubuntu1804-docker-4c-4g-402 sshd[1456]: Did not receive identification string from 10.32.4.5 port 45798
Feb 15 10:31:42 prd-ubuntu1804-docker-4c-4g-402 sshd[1517]: Invalid user jenkins from 10.32.4.5 port 45808
Feb 15 10:31:42 prd-ubuntu1804-docker-4c-4g-402 sshd[1517]: Received disconnect from 10.32.4.5 port 45808:11: Closed due to user request. [preauth]
Feb 15 10:31:42 prd-ubuntu1804-docker-4c-4g-402 sshd[1517]: Disconnected from invalid user jenkins 10.32.4.5 port 45808 [preauth]
Feb 15 10:31:44 prd-ubuntu1804-docker-4c-4g-402 sshd[1521]: Invalid user jenkins from 10.32.4.5 port 45810
Feb 15 10:31:44 prd-ubuntu1804-docker-4c-4g-402 sshd[1521]: Received disconnect from 10.32.4.5 port 45810:11: Closed due to user request. [preauth]
Feb 15 10:31:44 prd-ubuntu1804-docker-4c-4g-402 sshd[1521]: Disconnected from invalid user jenkins 10.32.4.5 port 45810 [preauth]
Feb 15 10:31:46 prd-ubuntu1804-docker-4c-4g-402 sshd[1523]: Invalid user jenkins from 10.32.4.5 port 45812
Feb 15 10:31:46 prd-ubuntu1804-docker-4c-4g-402 sshd[1523]: Received disconnect from 10.32.4.5 port 45812:11: Closed due to user request. [preauth]
Feb 15 10:31:46 prd-ubuntu1804-docker-4c-4g-402 sshd[1523]: Disconnected from invalid user jenkins 10.32.4.5 port 45812 [preauth]
Feb 15 10:31:48 prd-ubuntu1804-docker-4c-4g-402 sshd[1525]: Invalid user jenkins from 10.32.4.5 port 45816
Feb 15 10:31:48 prd-ubuntu1804-docker-4c-4g-402 sshd[1525]: Received disconnect from 10.32.4.5 port 45816:11: Closed due to user request. [preauth]
Feb 15 10:31:48 prd-ubuntu1804-docker-4c-4g-402 sshd[1525]: Disconnected from invalid user jenkins 10.32.4.5 port 45816 [preauth]
Feb 15 10:31:50 prd-ubuntu1804-docker-4c-4g-402 sshd[1527]: Invalid user jenkins from 10.32.4.5 port 45818
Feb 15 10:31:50 prd-ubuntu1804-docker-4c-4g-402 sshd[1527]: Received disconnect from 10.32.4.5 port 45818:11: Closed due to user request. [preauth]
Feb 15 10:31:50 prd-ubuntu1804-docker-4c-4g-402 sshd[1527]: Disconnected from invalid user jenkins 10.32.4.5 port 45818 [preauth]
Feb 15 10:31:52 prd-ubuntu1804-docker-4c-4g-402 sshd[1529]: Invalid user jenkins from 10.32.4.5 port 45820
Feb 15 10:31:52 prd-ubuntu1804-docker-4c-4g-402 sshd[1529]: Received disconnect from 10.32.4.5 port 45820:11: Closed due to user request. [preauth]
Feb 15 10:31:52 prd-ubuntu1804-docker-4c-4g-402 sshd[1529]: Disconnected from invalid user jenkins 10.32.4.5 port 45820 [preauth]
Feb 15 10:31:55 prd-ubuntu1804-docker-4c-4g-402 sshd[1606]: Invalid user jenkins from 10.32.4.5 port 45822
Feb 15 10:31:56 prd-ubuntu1804-docker-4c-4g-402 sshd[1606]: Received disconnect from 10.32.4.5 port 45822:11: Closed due to user request. [preauth]
Feb 15 10:31:56 prd-ubuntu1804-docker-4c-4g-402 sshd[1606]: Disconnected from invalid user jenkins 10.32.4.5 port 45822 [preauth]
Feb 15 10:31:58 prd-ubuntu1804-docker-4c-4g-402 sshd[1771]: Invalid user jenkins from 10.32.4.5 port 45824
Feb 15 10:31:58 prd-ubuntu1804-docker-4c-4g-402 sshd[1771]: Received disconnect from 10.32.4.5 port 45824:11: Closed due to user request. [preauth]
Feb 15 10:31:58 prd-ubuntu1804-docker-4c-4g-402 sshd[1771]: Disconnected from invalid user jenkins 10.32.4.5 port 45824 [preauth]
Feb 15 10:32:00 prd-ubuntu1804-docker-4c-4g-402 sshd[1805]: Invalid user jenkins from 10.32.4.5 port 45826
Feb 15 10:32:00 prd-ubuntu1804-docker-4c-4g-402 sshd[1805]: Received disconnect from 10.32.4.5 port 45826:11: Closed due to user request. [preauth]
Feb 15 10:32:00 prd-ubuntu1804-docker-4c-4g-402 sshd[1805]: Disconnected from invalid user jenkins 10.32.4.5 port 45826 [preauth]
Feb 15 10:32:01 prd-ubuntu1804-docker-4c-4g-402 useradd[1823]: new group: name=jenkins, GID=1001
Feb 15 10:32:01 prd-ubuntu1804-docker-4c-4g-402 useradd[1823]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Feb 15 10:32:01 prd-ubuntu1804-docker-4c-4g-402 usermod[1830]: add 'jenkins' to group 'docker'
Feb 15 10:32:01 prd-ubuntu1804-docker-4c-4g-402 usermod[1830]: add 'jenkins' to shadow group 'docker'
Feb 15 10:32:02 prd-ubuntu1804-docker-4c-4g-402 sshd[1864]: Accepted publickey for jenkins from 10.32.4.5 port 45828 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Feb 15 10:32:02 prd-ubuntu1804-docker-4c-4g-402 sshd[1864]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Feb 15 10:32:02 prd-ubuntu1804-docker-4c-4g-402 systemd-logind[1018]: New session 1 of user jenkins.
Feb 15 10:32:02 prd-ubuntu1804-docker-4c-4g-402 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Feb 15 10:32:02 prd-ubuntu1804-docker-4c-4g-402 CRON[1928]: pam_unix(cron:session): session opened for user root by (uid=0)
Feb 15 10:32:02 prd-ubuntu1804-docker-4c-4g-402 CRON[1928]: pam_unix(cron:session): session closed for user root
Feb 15 10:33:01 prd-ubuntu1804-docker-4c-4g-402 CRON[2453]: pam_unix(cron:session): session opened for user root by (uid=0)
Feb 15 10:33:01 prd-ubuntu1804-docker-4c-4g-402 CRON[2453]: pam_unix(cron:session): session closed for user root
Feb 15 10:34:01 prd-ubuntu1804-docker-4c-4g-402 CRON[4763]: pam_unix(cron:session): session opened for user root by (uid=0)
Feb 15 10:34:01 prd-ubuntu1804-docker-4c-4g-402 CRON[4763]: pam_unix(cron:session): session closed for user root
Feb 15 10:35:01 prd-ubuntu1804-docker-4c-4g-402 CRON[8005]: pam_unix(cron:session): session opened for user root by (uid=0)
Feb 15 10:35:01 prd-ubuntu1804-docker-4c-4g-402 CRON[8005]: pam_unix(cron:session): session closed for user root
Feb 15 10:35:18 prd-ubuntu1804-docker-4c-4g-402 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/smo-ves-collector-docker-merge-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Feb 15 10:35:18 prd-ubuntu1804-docker-4c-4g-402 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)