Sep 11 16:16:13 prd-ubuntu1804-docker-8c-8g-45168 passwd[984]: password for 'ubuntu' changed by 'root'
Sep 11 16:16:13 prd-ubuntu1804-docker-8c-8g-45168 systemd-logind[1021]: Watching system buttons on /dev/input/event0 (Power Button)
Sep 11 16:16:13 prd-ubuntu1804-docker-8c-8g-45168 systemd-logind[1021]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Sep 11 16:16:13 prd-ubuntu1804-docker-8c-8g-45168 systemd-logind[1021]: New seat seat0.
Sep 11 16:16:13 prd-ubuntu1804-docker-8c-8g-45168 sshd[1156]: Server listening on 0.0.0.0 port 22.
Sep 11 16:16:13 prd-ubuntu1804-docker-8c-8g-45168 sshd[1156]: Server listening on :: port 22.
Sep 11 16:16:15 prd-ubuntu1804-docker-8c-8g-45168 sshd[1449]: Did not receive identification string from 10.30.104.4 port 53428
Sep 11 16:16:22 prd-ubuntu1804-docker-8c-8g-45168 sshd[1481]: Invalid user jenkins from 10.30.104.4 port 53436
Sep 11 16:16:22 prd-ubuntu1804-docker-8c-8g-45168 sshd[1481]: Received disconnect from 10.30.104.4 port 53436:11: Closed due to user request. [preauth]
Sep 11 16:16:22 prd-ubuntu1804-docker-8c-8g-45168 sshd[1481]: Disconnected from invalid user jenkins 10.30.104.4 port 53436 [preauth]
Sep 11 16:16:24 prd-ubuntu1804-docker-8c-8g-45168 sshd[1485]: Invalid user jenkins from 10.30.104.4 port 53444
Sep 11 16:16:24 prd-ubuntu1804-docker-8c-8g-45168 sshd[1485]: Received disconnect from 10.30.104.4 port 53444:11: Closed due to user request. [preauth]
Sep 11 16:16:24 prd-ubuntu1804-docker-8c-8g-45168 sshd[1485]: Disconnected from invalid user jenkins 10.30.104.4 port 53444 [preauth]
Sep 11 16:16:26 prd-ubuntu1804-docker-8c-8g-45168 sshd[1487]: Invalid user jenkins from 10.30.104.4 port 53448
Sep 11 16:16:26 prd-ubuntu1804-docker-8c-8g-45168 sshd[1487]: Received disconnect from 10.30.104.4 port 53448:11: Closed due to user request. [preauth]
Sep 11 16:16:26 prd-ubuntu1804-docker-8c-8g-45168 sshd[1487]: Disconnected from invalid user jenkins 10.30.104.4 port 53448 [preauth]
Sep 11 16:16:28 prd-ubuntu1804-docker-8c-8g-45168 sshd[1489]: Invalid user jenkins from 10.30.104.4 port 53454
Sep 11 16:16:28 prd-ubuntu1804-docker-8c-8g-45168 sshd[1489]: Received disconnect from 10.30.104.4 port 53454:11: Closed due to user request. [preauth]
Sep 11 16:16:28 prd-ubuntu1804-docker-8c-8g-45168 sshd[1489]: Disconnected from invalid user jenkins 10.30.104.4 port 53454 [preauth]
Sep 11 16:16:30 prd-ubuntu1804-docker-8c-8g-45168 sshd[1497]: Invalid user jenkins from 10.30.104.4 port 53460
Sep 11 16:16:30 prd-ubuntu1804-docker-8c-8g-45168 sshd[1497]: Received disconnect from 10.30.104.4 port 53460:11: Closed due to user request. [preauth]
Sep 11 16:16:30 prd-ubuntu1804-docker-8c-8g-45168 sshd[1497]: Disconnected from invalid user jenkins 10.30.104.4 port 53460 [preauth]
Sep 11 16:16:33 prd-ubuntu1804-docker-8c-8g-45168 sshd[1712]: Invalid user jenkins from 10.30.104.4 port 53466
Sep 11 16:16:33 prd-ubuntu1804-docker-8c-8g-45168 sshd[1712]: Received disconnect from 10.30.104.4 port 53466:11: Closed due to user request. [preauth]
Sep 11 16:16:33 prd-ubuntu1804-docker-8c-8g-45168 sshd[1712]: Disconnected from invalid user jenkins 10.30.104.4 port 53466 [preauth]
Sep 11 16:16:35 prd-ubuntu1804-docker-8c-8g-45168 sshd[1755]: Invalid user jenkins from 10.30.104.4 port 53472
Sep 11 16:16:35 prd-ubuntu1804-docker-8c-8g-45168 sshd[1755]: Received disconnect from 10.30.104.4 port 53472:11: Closed due to user request. [preauth]
Sep 11 16:16:35 prd-ubuntu1804-docker-8c-8g-45168 sshd[1755]: Disconnected from invalid user jenkins 10.30.104.4 port 53472 [preauth]
Sep 11 16:16:37 prd-ubuntu1804-docker-8c-8g-45168 sshd[1757]: Invalid user jenkins from 10.30.104.4 port 53478
Sep 11 16:16:37 prd-ubuntu1804-docker-8c-8g-45168 sshd[1757]: Received disconnect from 10.30.104.4 port 53478:11: Closed due to user request. [preauth]
Sep 11 16:16:37 prd-ubuntu1804-docker-8c-8g-45168 sshd[1757]: Disconnected from invalid user jenkins 10.30.104.4 port 53478 [preauth]
Sep 11 16:16:39 prd-ubuntu1804-docker-8c-8g-45168 sshd[1765]: Invalid user jenkins from 10.30.104.4 port 53480
Sep 11 16:16:39 prd-ubuntu1804-docker-8c-8g-45168 sshd[1765]: Received disconnect from 10.30.104.4 port 53480:11: Closed due to user request. [preauth]
Sep 11 16:16:39 prd-ubuntu1804-docker-8c-8g-45168 sshd[1765]: Disconnected from invalid user jenkins 10.30.104.4 port 53480 [preauth]
Sep 11 16:16:41 prd-ubuntu1804-docker-8c-8g-45168 sshd[1767]: Invalid user jenkins from 10.30.104.4 port 53484
Sep 11 16:16:41 prd-ubuntu1804-docker-8c-8g-45168 sshd[1767]: Received disconnect from 10.30.104.4 port 53484:11: Closed due to user request. [preauth]
Sep 11 16:16:41 prd-ubuntu1804-docker-8c-8g-45168 sshd[1767]: Disconnected from invalid user jenkins 10.30.104.4 port 53484 [preauth]
Sep 11 16:16:43 prd-ubuntu1804-docker-8c-8g-45168 sshd[1769]: Invalid user jenkins from 10.30.104.4 port 53488
Sep 11 16:16:43 prd-ubuntu1804-docker-8c-8g-45168 sshd[1769]: Received disconnect from 10.30.104.4 port 53488:11: Closed due to user request. [preauth]
Sep 11 16:16:43 prd-ubuntu1804-docker-8c-8g-45168 sshd[1769]: Disconnected from invalid user jenkins 10.30.104.4 port 53488 [preauth]
Sep 11 16:16:44 prd-ubuntu1804-docker-8c-8g-45168 useradd[1815]: new group: name=jenkins, GID=1001
Sep 11 16:16:44 prd-ubuntu1804-docker-8c-8g-45168 useradd[1815]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Sep 11 16:16:44 prd-ubuntu1804-docker-8c-8g-45168 usermod[1822]: add 'jenkins' to group 'docker'
Sep 11 16:16:44 prd-ubuntu1804-docker-8c-8g-45168 usermod[1822]: add 'jenkins' to shadow group 'docker'
Sep 11 16:16:46 prd-ubuntu1804-docker-8c-8g-45168 sshd[1889]: Accepted publickey for jenkins from 10.30.104.4 port 53492 ssh2: RSA SHA256:V0799BjlU//1ruj1g81rY7MeNIJkwAJ0Kr3lNX3XaN4
Sep 11 16:16:46 prd-ubuntu1804-docker-8c-8g-45168 sshd[1889]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Sep 11 16:16:46 prd-ubuntu1804-docker-8c-8g-45168 systemd-logind[1021]: New session 1 of user jenkins.
Sep 11 16:16:46 prd-ubuntu1804-docker-8c-8g-45168 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Sep 11 16:17:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[2423]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 11 16:17:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[2422]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 11 16:17:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[2422]: pam_unix(cron:session): session closed for user root
Sep 11 16:17:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[2423]: pam_unix(cron:session): session closed for user root
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/bin/java java /usr/lib/jvm/java-17-openjdk-amd64/bin/java 1
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session closed for user root
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/bin/javac javac /usr/lib/jvm/java-17-openjdk-amd64/bin/javac 1
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session closed for user root
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/lib/jvm/java-openjdk java_sdk_openjdk /usr/lib/jvm/java-17-openjdk-amd64 1
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session closed for user root
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set java /usr/lib/jvm/java-17-openjdk-amd64/bin/java
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session closed for user root
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set javac /usr/lib/jvm/java-17-openjdk-amd64/bin/javac
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session closed for user root
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set java_sdk_openjdk /usr/lib/jvm/java-17-openjdk-amd64
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Sep 11 16:18:00 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session closed for user root
Sep 11 16:18:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[2668]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 11 16:18:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[2668]: pam_unix(cron:session): session closed for user root
Sep 11 16:19:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[3101]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 11 16:19:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[3101]: pam_unix(cron:session): session closed for user root
Sep 11 16:20:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[3705]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 11 16:20:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[3705]: pam_unix(cron:session): session closed for user root
Sep 11 16:21:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[4142]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 11 16:21:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[4142]: pam_unix(cron:session): session closed for user root
Sep 11 16:22:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[4531]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 11 16:22:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[4531]: pam_unix(cron:session): session closed for user root
Sep 11 16:23:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[4951]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 11 16:23:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[4951]: pam_unix(cron:session): session closed for user root
Sep 11 16:24:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[5332]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep 11 16:24:01 prd-ubuntu1804-docker-8c-8g-45168 CRON[5332]: pam_unix(cron:session): session closed for user root
Sep 11 16:24:14 prd-ubuntu1804-docker-8c-8g-45168 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Sep 11 16:24:14 prd-ubuntu1804-docker-8c-8g-45168 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)