Jun 23 10:34:41 prd-ubuntu1804-docker-8c-8g-23167 passwd[1003]: password for 'ubuntu' changed by 'root'
Jun 23 10:34:41 prd-ubuntu1804-docker-8c-8g-23167 sshd[1102]: Server listening on 0.0.0.0 port 22.
Jun 23 10:34:41 prd-ubuntu1804-docker-8c-8g-23167 sshd[1102]: Server listening on :: port 22.
Jun 23 10:34:41 prd-ubuntu1804-docker-8c-8g-23167 systemd-logind[1100]: Watching system buttons on /dev/input/event0 (Power Button)
Jun 23 10:34:41 prd-ubuntu1804-docker-8c-8g-23167 systemd-logind[1100]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Jun 23 10:34:41 prd-ubuntu1804-docker-8c-8g-23167 systemd-logind[1100]: New seat seat0.
Jun 23 10:34:44 prd-ubuntu1804-docker-8c-8g-23167 sshd[1368]: Did not receive identification string from 10.30.104.4 port 39192
Jun 23 10:34:51 prd-ubuntu1804-docker-8c-8g-23167 sshd[1395]: Invalid user jenkins from 10.30.104.4 port 39204
Jun 23 10:34:51 prd-ubuntu1804-docker-8c-8g-23167 sshd[1395]: Received disconnect from 10.30.104.4 port 39204:11: Closed due to user request. [preauth]
Jun 23 10:34:51 prd-ubuntu1804-docker-8c-8g-23167 sshd[1395]: Disconnected from invalid user jenkins 10.30.104.4 port 39204 [preauth]
Jun 23 10:34:53 prd-ubuntu1804-docker-8c-8g-23167 sshd[1399]: Invalid user jenkins from 10.30.104.4 port 39208
Jun 23 10:34:53 prd-ubuntu1804-docker-8c-8g-23167 sshd[1399]: Received disconnect from 10.30.104.4 port 39208:11: Closed due to user request. [preauth]
Jun 23 10:34:53 prd-ubuntu1804-docker-8c-8g-23167 sshd[1399]: Disconnected from invalid user jenkins 10.30.104.4 port 39208 [preauth]
Jun 23 10:34:55 prd-ubuntu1804-docker-8c-8g-23167 sshd[1401]: Invalid user jenkins from 10.30.104.4 port 39212
Jun 23 10:34:55 prd-ubuntu1804-docker-8c-8g-23167 sshd[1401]: Received disconnect from 10.30.104.4 port 39212:11: Closed due to user request. [preauth]
Jun 23 10:34:55 prd-ubuntu1804-docker-8c-8g-23167 sshd[1401]: Disconnected from invalid user jenkins 10.30.104.4 port 39212 [preauth]
Jun 23 10:34:57 prd-ubuntu1804-docker-8c-8g-23167 sshd[1403]: Invalid user jenkins from 10.30.104.4 port 39216
Jun 23 10:34:57 prd-ubuntu1804-docker-8c-8g-23167 sshd[1403]: Received disconnect from 10.30.104.4 port 39216:11: Closed due to user request. [preauth]
Jun 23 10:34:57 prd-ubuntu1804-docker-8c-8g-23167 sshd[1403]: Disconnected from invalid user jenkins 10.30.104.4 port 39216 [preauth]
Jun 23 10:35:00 prd-ubuntu1804-docker-8c-8g-23167 sshd[1582]: Invalid user jenkins from 10.30.104.4 port 39220
Jun 23 10:35:00 prd-ubuntu1804-docker-8c-8g-23167 sshd[1582]: Received disconnect from 10.30.104.4 port 39220:11: Closed due to user request. [preauth]
Jun 23 10:35:00 prd-ubuntu1804-docker-8c-8g-23167 sshd[1582]: Disconnected from invalid user jenkins 10.30.104.4 port 39220 [preauth]
Jun 23 10:35:02 prd-ubuntu1804-docker-8c-8g-23167 CRON[1655]: pam_unix(cron:session): session opened for user root by (uid=0)
Jun 23 10:35:02 prd-ubuntu1804-docker-8c-8g-23167 CRON[1655]: pam_unix(cron:session): session closed for user root
Jun 23 10:35:02 prd-ubuntu1804-docker-8c-8g-23167 sshd[1673]: Invalid user jenkins from 10.30.104.4 port 39232
Jun 23 10:35:02 prd-ubuntu1804-docker-8c-8g-23167 sshd[1673]: Received disconnect from 10.30.104.4 port 39232:11: Closed due to user request. [preauth]
Jun 23 10:35:02 prd-ubuntu1804-docker-8c-8g-23167 sshd[1673]: Disconnected from invalid user jenkins 10.30.104.4 port 39232 [preauth]
Jun 23 10:35:04 prd-ubuntu1804-docker-8c-8g-23167 sshd[1679]: Invalid user jenkins from 10.30.104.4 port 39238
Jun 23 10:35:04 prd-ubuntu1804-docker-8c-8g-23167 sshd[1679]: Received disconnect from 10.30.104.4 port 39238:11: Closed due to user request. [preauth]
Jun 23 10:35:04 prd-ubuntu1804-docker-8c-8g-23167 sshd[1679]: Disconnected from invalid user jenkins 10.30.104.4 port 39238 [preauth]
Jun 23 10:35:06 prd-ubuntu1804-docker-8c-8g-23167 sshd[1681]: Invalid user jenkins from 10.30.104.4 port 39242
Jun 23 10:35:07 prd-ubuntu1804-docker-8c-8g-23167 sshd[1681]: Received disconnect from 10.30.104.4 port 39242:11: Closed due to user request. [preauth]
Jun 23 10:35:07 prd-ubuntu1804-docker-8c-8g-23167 sshd[1681]: Disconnected from invalid user jenkins 10.30.104.4 port 39242 [preauth]
Jun 23 10:35:09 prd-ubuntu1804-docker-8c-8g-23167 sshd[1690]: Invalid user jenkins from 10.30.104.4 port 39244
Jun 23 10:35:09 prd-ubuntu1804-docker-8c-8g-23167 sshd[1690]: Received disconnect from 10.30.104.4 port 39244:11: Closed due to user request. [preauth]
Jun 23 10:35:09 prd-ubuntu1804-docker-8c-8g-23167 sshd[1690]: Disconnected from invalid user jenkins 10.30.104.4 port 39244 [preauth]
Jun 23 10:35:11 prd-ubuntu1804-docker-8c-8g-23167 sshd[1692]: Invalid user jenkins from 10.30.104.4 port 39248
Jun 23 10:35:11 prd-ubuntu1804-docker-8c-8g-23167 sshd[1692]: Received disconnect from 10.30.104.4 port 39248:11: Closed due to user request. [preauth]
Jun 23 10:35:11 prd-ubuntu1804-docker-8c-8g-23167 sshd[1692]: Disconnected from invalid user jenkins 10.30.104.4 port 39248 [preauth]
Jun 23 10:35:13 prd-ubuntu1804-docker-8c-8g-23167 sshd[1714]: Invalid user jenkins from 10.30.104.4 port 39252
Jun 23 10:35:13 prd-ubuntu1804-docker-8c-8g-23167 sshd[1714]: Received disconnect from 10.30.104.4 port 39252:11: Closed due to user request. [preauth]
Jun 23 10:35:13 prd-ubuntu1804-docker-8c-8g-23167 sshd[1714]: Disconnected from invalid user jenkins 10.30.104.4 port 39252 [preauth]
Jun 23 10:35:15 prd-ubuntu1804-docker-8c-8g-23167 sshd[1716]: Invalid user jenkins from 10.30.104.4 port 39256
Jun 23 10:35:15 prd-ubuntu1804-docker-8c-8g-23167 sshd[1716]: Received disconnect from 10.30.104.4 port 39256:11: Closed due to user request. [preauth]
Jun 23 10:35:15 prd-ubuntu1804-docker-8c-8g-23167 sshd[1716]: Disconnected from invalid user jenkins 10.30.104.4 port 39256 [preauth]
Jun 23 10:35:17 prd-ubuntu1804-docker-8c-8g-23167 sshd[1718]: Invalid user jenkins from 10.30.104.4 port 39264
Jun 23 10:35:18 prd-ubuntu1804-docker-8c-8g-23167 sshd[1718]: Received disconnect from 10.30.104.4 port 39264:11: Closed due to user request. [preauth]
Jun 23 10:35:18 prd-ubuntu1804-docker-8c-8g-23167 sshd[1718]: Disconnected from invalid user jenkins 10.30.104.4 port 39264 [preauth]
Jun 23 10:35:18 prd-ubuntu1804-docker-8c-8g-23167 useradd[1738]: new group: name=jenkins, GID=1001
Jun 23 10:35:18 prd-ubuntu1804-docker-8c-8g-23167 useradd[1738]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Jun 23 10:35:18 prd-ubuntu1804-docker-8c-8g-23167 usermod[1745]: add 'jenkins' to group 'docker'
Jun 23 10:35:18 prd-ubuntu1804-docker-8c-8g-23167 usermod[1745]: add 'jenkins' to shadow group 'docker'
Jun 23 10:35:20 prd-ubuntu1804-docker-8c-8g-23167 sshd[1806]: Accepted publickey for jenkins from 10.30.104.4 port 39274 ssh2: RSA SHA256:V0799BjlU//1ruj1g81rY7MeNIJkwAJ0Kr3lNX3XaN4
Jun 23 10:35:20 prd-ubuntu1804-docker-8c-8g-23167 sshd[1806]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Jun 23 10:35:20 prd-ubuntu1804-docker-8c-8g-23167 systemd-logind[1100]: New session 2 of user jenkins.
Jun 23 10:35:20 prd-ubuntu1804-docker-8c-8g-23167 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Jun 23 10:36:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[2387]: pam_unix(cron:session): session opened for user root by (uid=0)
Jun 23 10:36:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[2387]: pam_unix(cron:session): session closed for user root
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/bin/java java /usr/lib/jvm/java-17-openjdk-amd64/bin/java 1
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session closed for user root
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/bin/javac javac /usr/lib/jvm/java-17-openjdk-amd64/bin/javac 1
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session closed for user root
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/lib/jvm/java-openjdk java_sdk_openjdk /usr/lib/jvm/java-17-openjdk-amd64 1
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session closed for user root
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set java /usr/lib/jvm/java-17-openjdk-amd64/bin/java
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session closed for user root
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set javac /usr/lib/jvm/java-17-openjdk-amd64/bin/javac
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session closed for user root
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set java_sdk_openjdk /usr/lib/jvm/java-17-openjdk-amd64
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Jun 23 10:36:29 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session closed for user root
Jun 23 10:37:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[2869]: pam_unix(cron:session): session opened for user root by (uid=0)
Jun 23 10:37:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[2869]: pam_unix(cron:session): session closed for user root
Jun 23 10:38:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[3195]: pam_unix(cron:session): session opened for user root by (uid=0)
Jun 23 10:38:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[3195]: pam_unix(cron:session): session closed for user root
Jun 23 10:39:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[3705]: pam_unix(cron:session): session opened for user root by (uid=0)
Jun 23 10:39:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[3705]: pam_unix(cron:session): session closed for user root
Jun 23 10:40:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[4188]: pam_unix(cron:session): session opened for user root by (uid=0)
Jun 23 10:40:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[4188]: pam_unix(cron:session): session closed for user root
Jun 23 10:41:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[4670]: pam_unix(cron:session): session opened for user root by (uid=0)
Jun 23 10:41:01 prd-ubuntu1804-docker-8c-8g-23167 CRON[4670]: pam_unix(cron:session): session closed for user root
Jun 23 10:41:21 prd-ubuntu1804-docker-8c-8g-23167 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Jun 23 10:41:21 prd-ubuntu1804-docker-8c-8g-23167 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)