May  3 10:31:34 prd-ubuntu1804-docker-4c-4g-243 passwd[938]: password for 'ubuntu' changed by 'root'
May  3 10:31:34 prd-ubuntu1804-docker-4c-4g-243 systemd-logind[971]: Watching system buttons on /dev/input/event0 (Power Button)
May  3 10:31:34 prd-ubuntu1804-docker-4c-4g-243 systemd-logind[971]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
May  3 10:31:34 prd-ubuntu1804-docker-4c-4g-243 systemd-logind[971]: New seat seat0.
May  3 10:31:35 prd-ubuntu1804-docker-4c-4g-243 sshd[1270]: Server listening on 0.0.0.0 port 22.
May  3 10:31:35 prd-ubuntu1804-docker-4c-4g-243 sshd[1270]: Server listening on :: port 22.
May  3 10:31:38 prd-ubuntu1804-docker-4c-4g-243 sshd[1485]: Did not receive identification string from 10.32.4.5 port 42240
May  3 10:31:45 prd-ubuntu1804-docker-4c-4g-243 sshd[1556]: Invalid user jenkins from 10.32.4.5 port 42248
May  3 10:31:45 prd-ubuntu1804-docker-4c-4g-243 sshd[1556]: Received disconnect from 10.32.4.5 port 42248:11: Closed due to user request. [preauth]
May  3 10:31:45 prd-ubuntu1804-docker-4c-4g-243 sshd[1556]: Disconnected from invalid user jenkins 10.32.4.5 port 42248 [preauth]
May  3 10:31:47 prd-ubuntu1804-docker-4c-4g-243 sshd[1560]: Invalid user jenkins from 10.32.4.5 port 42252
May  3 10:31:47 prd-ubuntu1804-docker-4c-4g-243 sshd[1560]: Received disconnect from 10.32.4.5 port 42252:11: Closed due to user request. [preauth]
May  3 10:31:47 prd-ubuntu1804-docker-4c-4g-243 sshd[1560]: Disconnected from invalid user jenkins 10.32.4.5 port 42252 [preauth]
May  3 10:31:49 prd-ubuntu1804-docker-4c-4g-243 sshd[1562]: Invalid user jenkins from 10.32.4.5 port 42256
May  3 10:31:49 prd-ubuntu1804-docker-4c-4g-243 sshd[1562]: Received disconnect from 10.32.4.5 port 42256:11: Closed due to user request. [preauth]
May  3 10:31:49 prd-ubuntu1804-docker-4c-4g-243 sshd[1562]: Disconnected from invalid user jenkins 10.32.4.5 port 42256 [preauth]
May  3 10:31:51 prd-ubuntu1804-docker-4c-4g-243 sshd[1564]: Invalid user jenkins from 10.32.4.5 port 42258
May  3 10:31:52 prd-ubuntu1804-docker-4c-4g-243 sshd[1564]: Received disconnect from 10.32.4.5 port 42258:11: Closed due to user request. [preauth]
May  3 10:31:52 prd-ubuntu1804-docker-4c-4g-243 sshd[1564]: Disconnected from invalid user jenkins 10.32.4.5 port 42258 [preauth]
May  3 10:31:54 prd-ubuntu1804-docker-4c-4g-243 sshd[1566]: Invalid user jenkins from 10.32.4.5 port 42260
May  3 10:31:54 prd-ubuntu1804-docker-4c-4g-243 sshd[1566]: Received disconnect from 10.32.4.5 port 42260:11: Closed due to user request. [preauth]
May  3 10:31:54 prd-ubuntu1804-docker-4c-4g-243 sshd[1566]: Disconnected from invalid user jenkins 10.32.4.5 port 42260 [preauth]
May  3 10:31:56 prd-ubuntu1804-docker-4c-4g-243 sshd[1568]: Invalid user jenkins from 10.32.4.5 port 42262
May  3 10:31:56 prd-ubuntu1804-docker-4c-4g-243 sshd[1568]: Received disconnect from 10.32.4.5 port 42262:11: Closed due to user request. [preauth]
May  3 10:31:56 prd-ubuntu1804-docker-4c-4g-243 sshd[1568]: Disconnected from invalid user jenkins 10.32.4.5 port 42262 [preauth]
May  3 10:31:58 prd-ubuntu1804-docker-4c-4g-243 sshd[1722]: Invalid user jenkins from 10.32.4.5 port 42264
May  3 10:31:58 prd-ubuntu1804-docker-4c-4g-243 sshd[1722]: Received disconnect from 10.32.4.5 port 42264:11: Closed due to user request. [preauth]
May  3 10:31:58 prd-ubuntu1804-docker-4c-4g-243 sshd[1722]: Disconnected from invalid user jenkins 10.32.4.5 port 42264 [preauth]
May  3 10:32:00 prd-ubuntu1804-docker-4c-4g-243 sshd[1829]: Invalid user jenkins from 10.32.4.5 port 42266
May  3 10:32:00 prd-ubuntu1804-docker-4c-4g-243 sshd[1829]: Received disconnect from 10.32.4.5 port 42266:11: Closed due to user request. [preauth]
May  3 10:32:00 prd-ubuntu1804-docker-4c-4g-243 sshd[1829]: Disconnected from invalid user jenkins 10.32.4.5 port 42266 [preauth]
May  3 10:32:01 prd-ubuntu1804-docker-4c-4g-243 CRON[1848]: pam_unix(cron:session): session opened for user root by (uid=0)
May  3 10:32:01 prd-ubuntu1804-docker-4c-4g-243 CRON[1848]: pam_unix(cron:session): session closed for user root
May  3 10:32:02 prd-ubuntu1804-docker-4c-4g-243 sshd[1856]: Invalid user jenkins from 10.32.4.5 port 42268
May  3 10:32:02 prd-ubuntu1804-docker-4c-4g-243 sshd[1856]: Received disconnect from 10.32.4.5 port 42268:11: Closed due to user request. [preauth]
May  3 10:32:02 prd-ubuntu1804-docker-4c-4g-243 sshd[1856]: Disconnected from invalid user jenkins 10.32.4.5 port 42268 [preauth]
May  3 10:32:04 prd-ubuntu1804-docker-4c-4g-243 useradd[1874]: new group: name=jenkins, GID=1001
May  3 10:32:04 prd-ubuntu1804-docker-4c-4g-243 useradd[1874]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
May  3 10:32:04 prd-ubuntu1804-docker-4c-4g-243 usermod[1881]: add 'jenkins' to group 'docker'
May  3 10:32:04 prd-ubuntu1804-docker-4c-4g-243 usermod[1881]: add 'jenkins' to shadow group 'docker'
May  3 10:32:04 prd-ubuntu1804-docker-4c-4g-243 sshd[1915]: Accepted publickey for jenkins from 10.32.4.5 port 42272 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
May  3 10:32:04 prd-ubuntu1804-docker-4c-4g-243 sshd[1915]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
May  3 10:32:04 prd-ubuntu1804-docker-4c-4g-243 systemd-logind[971]: New session 2 of user jenkins.
May  3 10:32:04 prd-ubuntu1804-docker-4c-4g-243 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
May  3 10:33:01 prd-ubuntu1804-docker-4c-4g-243 CRON[2486]: pam_unix(cron:session): session opened for user root by (uid=0)
May  3 10:33:01 prd-ubuntu1804-docker-4c-4g-243 CRON[2486]: pam_unix(cron:session): session closed for user root
May  3 10:34:01 prd-ubuntu1804-docker-4c-4g-243 CRON[4642]: pam_unix(cron:session): session opened for user root by (uid=0)
May  3 10:34:01 prd-ubuntu1804-docker-4c-4g-243 CRON[4642]: pam_unix(cron:session): session closed for user root
May  3 10:35:01 prd-ubuntu1804-docker-4c-4g-243 CRON[7868]: pam_unix(cron:session): session opened for user root by (uid=0)
May  3 10:35:01 prd-ubuntu1804-docker-4c-4g-243 CRON[7868]: pam_unix(cron:session): session closed for user root
May  3 10:35:19 prd-ubuntu1804-docker-4c-4g-243 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/smo-ves-collector-docker-merge-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
May  3 10:35:19 prd-ubuntu1804-docker-4c-4g-243 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)