Apr 10 10:06:23 prd-ubuntu1804-docker-8c-16g-22040 passwd[1084]: password for 'ubuntu' changed by 'root'
Apr 10 10:06:23 prd-ubuntu1804-docker-8c-16g-22040 systemd-logind[1129]: Watching system buttons on /dev/input/event0 (Power Button)
Apr 10 10:06:23 prd-ubuntu1804-docker-8c-16g-22040 systemd-logind[1129]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Apr 10 10:06:23 prd-ubuntu1804-docker-8c-16g-22040 systemd-logind[1129]: New seat seat0.
Apr 10 10:06:23 prd-ubuntu1804-docker-8c-16g-22040 sshd[1261]: Server listening on 0.0.0.0 port 22.
Apr 10 10:06:23 prd-ubuntu1804-docker-8c-16g-22040 sshd[1261]: Server listening on :: port 22.
Apr 10 10:06:24 prd-ubuntu1804-docker-8c-16g-22040 sshd[1568]: Did not receive identification string from 10.30.104.4 port 58058
Apr 10 10:06:34 prd-ubuntu1804-docker-8c-16g-22040 sshd[1666]: Invalid user jenkins from 10.30.104.4 port 58064
Apr 10 10:06:34 prd-ubuntu1804-docker-8c-16g-22040 sshd[1666]: Received disconnect from 10.30.104.4 port 58064:11: Closed due to user request. [preauth]
Apr 10 10:06:34 prd-ubuntu1804-docker-8c-16g-22040 sshd[1666]: Disconnected from invalid user jenkins 10.30.104.4 port 58064 [preauth]
Apr 10 10:06:36 prd-ubuntu1804-docker-8c-16g-22040 sshd[1670]: Invalid user jenkins from 10.30.104.4 port 58072
Apr 10 10:06:36 prd-ubuntu1804-docker-8c-16g-22040 sshd[1670]: Received disconnect from 10.30.104.4 port 58072:11: Closed due to user request. [preauth]
Apr 10 10:06:36 prd-ubuntu1804-docker-8c-16g-22040 sshd[1670]: Disconnected from invalid user jenkins 10.30.104.4 port 58072 [preauth]
Apr 10 10:06:38 prd-ubuntu1804-docker-8c-16g-22040 sshd[1672]: Invalid user jenkins from 10.30.104.4 port 58076
Apr 10 10:06:38 prd-ubuntu1804-docker-8c-16g-22040 sshd[1672]: Received disconnect from 10.30.104.4 port 58076:11: Closed due to user request. [preauth]
Apr 10 10:06:38 prd-ubuntu1804-docker-8c-16g-22040 sshd[1672]: Disconnected from invalid user jenkins 10.30.104.4 port 58076 [preauth]
Apr 10 10:06:40 prd-ubuntu1804-docker-8c-16g-22040 sshd[1674]: Invalid user jenkins from 10.30.104.4 port 58084
Apr 10 10:06:40 prd-ubuntu1804-docker-8c-16g-22040 sshd[1674]: Received disconnect from 10.30.104.4 port 58084:11: Closed due to user request. [preauth]
Apr 10 10:06:40 prd-ubuntu1804-docker-8c-16g-22040 sshd[1674]: Disconnected from invalid user jenkins 10.30.104.4 port 58084 [preauth]
Apr 10 10:06:43 prd-ubuntu1804-docker-8c-16g-22040 sshd[1895]: Invalid user jenkins from 10.30.104.4 port 58094
Apr 10 10:06:43 prd-ubuntu1804-docker-8c-16g-22040 sshd[1895]: Received disconnect from 10.30.104.4 port 58094:11: Closed due to user request. [preauth]
Apr 10 10:06:43 prd-ubuntu1804-docker-8c-16g-22040 sshd[1895]: Disconnected from invalid user jenkins 10.30.104.4 port 58094 [preauth]
Apr 10 10:06:45 prd-ubuntu1804-docker-8c-16g-22040 sshd[1941]: Invalid user jenkins from 10.30.104.4 port 58096
Apr 10 10:06:45 prd-ubuntu1804-docker-8c-16g-22040 sshd[1941]: Received disconnect from 10.30.104.4 port 58096:11: Closed due to user request. [preauth]
Apr 10 10:06:45 prd-ubuntu1804-docker-8c-16g-22040 sshd[1941]: Disconnected from invalid user jenkins 10.30.104.4 port 58096 [preauth]
Apr 10 10:06:47 prd-ubuntu1804-docker-8c-16g-22040 sshd[1951]: Invalid user jenkins from 10.30.104.4 port 58098
Apr 10 10:06:47 prd-ubuntu1804-docker-8c-16g-22040 sshd[1951]: Received disconnect from 10.30.104.4 port 58098:11: Closed due to user request. [preauth]
Apr 10 10:06:47 prd-ubuntu1804-docker-8c-16g-22040 sshd[1951]: Disconnected from invalid user jenkins 10.30.104.4 port 58098 [preauth]
Apr 10 10:06:53 prd-ubuntu1804-docker-8c-16g-22040 useradd[1972]: new group: name=jenkins, GID=1001
Apr 10 10:06:53 prd-ubuntu1804-docker-8c-16g-22040 useradd[1972]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Apr 10 10:06:53 prd-ubuntu1804-docker-8c-16g-22040 usermod[1979]: add 'jenkins' to group 'docker'
Apr 10 10:06:53 prd-ubuntu1804-docker-8c-16g-22040 usermod[1979]: add 'jenkins' to shadow group 'docker'
Apr 10 10:07:02 prd-ubuntu1804-docker-8c-16g-22040 CRON[2067]: pam_unix(cron:session): session opened for user root by (uid=0)
Apr 10 10:07:02 prd-ubuntu1804-docker-8c-16g-22040 CRON[2067]: pam_unix(cron:session): session closed for user root
Apr 10 10:07:06 prd-ubuntu1804-docker-8c-16g-22040 sshd[2076]: Accepted publickey for jenkins from 10.30.104.4 port 58124 ssh2: RSA SHA256:V0799BjlU//1ruj1g81rY7MeNIJkwAJ0Kr3lNX3XaN4
Apr 10 10:07:06 prd-ubuntu1804-docker-8c-16g-22040 sshd[2076]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Apr 10 10:07:06 prd-ubuntu1804-docker-8c-16g-22040 systemd-logind[1129]: New session 2 of user jenkins.
Apr 10 10:07:06 prd-ubuntu1804-docker-8c-16g-22040 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Apr 10 10:08:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[2633]: pam_unix(cron:session): session opened for user root by (uid=0)
Apr 10 10:08:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[2633]: pam_unix(cron:session): session closed for user root
Apr 10 10:09:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[2910]: pam_unix(cron:session): session opened for user root by (uid=0)
Apr 10 10:09:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[2910]: pam_unix(cron:session): session closed for user root
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-master-verify-java ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/bin/java java /usr/lib/jvm/java-17-openjdk-amd64/bin/java 1
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session closed for user root
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-master-verify-java ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/bin/javac javac /usr/lib/jvm/java-17-openjdk-amd64/bin/javac 1
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session closed for user root
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-master-verify-java ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/lib/jvm/java-openjdk java_sdk_openjdk /usr/lib/jvm/java-17-openjdk-amd64 1
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session closed for user root
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-master-verify-java ; USER=root ; COMMAND=/usr/bin/update-alternatives --set java /usr/lib/jvm/java-17-openjdk-amd64/bin/java
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session closed for user root
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-master-verify-java ; USER=root ; COMMAND=/usr/bin/update-alternatives --set javac /usr/lib/jvm/java-17-openjdk-amd64/bin/javac
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session closed for user root
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-master-verify-java ; USER=root ; COMMAND=/usr/bin/update-alternatives --set java_sdk_openjdk /usr/lib/jvm/java-17-openjdk-amd64
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Apr 10 10:09:09 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session closed for user root
Apr 10 10:10:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[3483]: pam_unix(cron:session): session opened for user root by (uid=0)
Apr 10 10:10:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[3483]: pam_unix(cron:session): session closed for user root
Apr 10 10:11:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[3943]: pam_unix(cron:session): session opened for user root by (uid=0)
Apr 10 10:11:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[3943]: pam_unix(cron:session): session closed for user root
Apr 10 10:12:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[4595]: pam_unix(cron:session): session opened for user root by (uid=0)
Apr 10 10:12:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[4595]: pam_unix(cron:session): session closed for user root
Apr 10 10:13:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[5241]: pam_unix(cron:session): session opened for user root by (uid=0)
Apr 10 10:13:01 prd-ubuntu1804-docker-8c-16g-22040 CRON[5241]: pam_unix(cron:session): session closed for user root
Apr 10 10:13:13 prd-ubuntu1804-docker-8c-16g-22040 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-master-verify-java ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Apr 10 10:13:13 prd-ubuntu1804-docker-8c-16g-22040 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)