Nov 10 16:52:34 prd-ubuntu1804-docker-8c-8g-11709 passwd[1003]: password for 'ubuntu' changed by 'root'
Nov 10 16:52:34 prd-ubuntu1804-docker-8c-8g-11709 systemd-logind[1058]: Watching system buttons on /dev/input/event0 (Power Button)
Nov 10 16:52:34 prd-ubuntu1804-docker-8c-8g-11709 systemd-logind[1058]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Nov 10 16:52:34 prd-ubuntu1804-docker-8c-8g-11709 systemd-logind[1058]: New seat seat0.
Nov 10 16:52:34 prd-ubuntu1804-docker-8c-8g-11709 sshd[1199]: Server listening on 0.0.0.0 port 22.
Nov 10 16:52:34 prd-ubuntu1804-docker-8c-8g-11709 sshd[1199]: Server listening on :: port 22.
Nov 10 16:52:36 prd-ubuntu1804-docker-8c-8g-11709 sshd[1426]: Did not receive identification string from 10.30.104.4 port 33802
Nov 10 16:52:43 prd-ubuntu1804-docker-8c-8g-11709 sshd[1457]: Invalid user jenkins from 10.30.104.4 port 33852
Nov 10 16:52:43 prd-ubuntu1804-docker-8c-8g-11709 sshd[1457]: Received disconnect from 10.30.104.4 port 33852:11: Closed due to user request. [preauth]
Nov 10 16:52:43 prd-ubuntu1804-docker-8c-8g-11709 sshd[1457]: Disconnected from invalid user jenkins 10.30.104.4 port 33852 [preauth]
Nov 10 16:52:45 prd-ubuntu1804-docker-8c-8g-11709 sshd[1461]: Invalid user jenkins from 10.30.104.4 port 33864
Nov 10 16:52:45 prd-ubuntu1804-docker-8c-8g-11709 sshd[1461]: Received disconnect from 10.30.104.4 port 33864:11: Closed due to user request. [preauth]
Nov 10 16:52:45 prd-ubuntu1804-docker-8c-8g-11709 sshd[1461]: Disconnected from invalid user jenkins 10.30.104.4 port 33864 [preauth]
Nov 10 16:52:47 prd-ubuntu1804-docker-8c-8g-11709 sshd[1463]: Invalid user jenkins from 10.30.104.4 port 33880
Nov 10 16:52:47 prd-ubuntu1804-docker-8c-8g-11709 sshd[1463]: Received disconnect from 10.30.104.4 port 33880:11: Closed due to user request. [preauth]
Nov 10 16:52:47 prd-ubuntu1804-docker-8c-8g-11709 sshd[1463]: Disconnected from invalid user jenkins 10.30.104.4 port 33880 [preauth]
Nov 10 16:52:49 prd-ubuntu1804-docker-8c-8g-11709 sshd[1465]: Invalid user jenkins from 10.30.104.4 port 33894
Nov 10 16:52:49 prd-ubuntu1804-docker-8c-8g-11709 sshd[1465]: Received disconnect from 10.30.104.4 port 33894:11: Closed due to user request. [preauth]
Nov 10 16:52:49 prd-ubuntu1804-docker-8c-8g-11709 sshd[1465]: Disconnected from invalid user jenkins 10.30.104.4 port 33894 [preauth]
Nov 10 16:52:51 prd-ubuntu1804-docker-8c-8g-11709 sshd[1467]: Invalid user jenkins from 10.30.104.4 port 33908
Nov 10 16:52:51 prd-ubuntu1804-docker-8c-8g-11709 sshd[1467]: Received disconnect from 10.30.104.4 port 33908:11: Closed due to user request. [preauth]
Nov 10 16:52:51 prd-ubuntu1804-docker-8c-8g-11709 sshd[1467]: Disconnected from invalid user jenkins 10.30.104.4 port 33908 [preauth]
Nov 10 16:52:54 prd-ubuntu1804-docker-8c-8g-11709 sshd[1687]: Invalid user jenkins from 10.30.104.4 port 33930
Nov 10 16:52:54 prd-ubuntu1804-docker-8c-8g-11709 sshd[1687]: Received disconnect from 10.30.104.4 port 33930:11: Closed due to user request. [preauth]
Nov 10 16:52:54 prd-ubuntu1804-docker-8c-8g-11709 sshd[1687]: Disconnected from invalid user jenkins 10.30.104.4 port 33930 [preauth]
Nov 10 16:52:56 prd-ubuntu1804-docker-8c-8g-11709 sshd[1733]: Invalid user jenkins from 10.30.104.4 port 33954
Nov 10 16:52:56 prd-ubuntu1804-docker-8c-8g-11709 sshd[1733]: Received disconnect from 10.30.104.4 port 33954:11: Closed due to user request. [preauth]
Nov 10 16:52:56 prd-ubuntu1804-docker-8c-8g-11709 sshd[1733]: Disconnected from invalid user jenkins 10.30.104.4 port 33954 [preauth]
Nov 10 16:52:58 prd-ubuntu1804-docker-8c-8g-11709 sshd[1735]: Invalid user jenkins from 10.30.104.4 port 33976
Nov 10 16:52:58 prd-ubuntu1804-docker-8c-8g-11709 sshd[1735]: Received disconnect from 10.30.104.4 port 33976:11: Closed due to user request. [preauth]
Nov 10 16:52:58 prd-ubuntu1804-docker-8c-8g-11709 sshd[1735]: Disconnected from invalid user jenkins 10.30.104.4 port 33976 [preauth]
Nov 10 16:53:01 prd-ubuntu1804-docker-8c-8g-11709 sshd[1745]: Invalid user jenkins from 10.30.104.4 port 33994
Nov 10 16:53:01 prd-ubuntu1804-docker-8c-8g-11709 sshd[1745]: Received disconnect from 10.30.104.4 port 33994:11: Closed due to user request. [preauth]
Nov 10 16:53:01 prd-ubuntu1804-docker-8c-8g-11709 sshd[1745]: Disconnected from invalid user jenkins 10.30.104.4 port 33994 [preauth]
Nov 10 16:53:02 prd-ubuntu1804-docker-8c-8g-11709 CRON[1747]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 10 16:53:02 prd-ubuntu1804-docker-8c-8g-11709 CRON[1747]: pam_unix(cron:session): session closed for user root
Nov 10 16:53:03 prd-ubuntu1804-docker-8c-8g-11709 sshd[1756]: Invalid user jenkins from 10.30.104.4 port 34012
Nov 10 16:53:03 prd-ubuntu1804-docker-8c-8g-11709 sshd[1756]: Received disconnect from 10.30.104.4 port 34012:11: Closed due to user request. [preauth]
Nov 10 16:53:03 prd-ubuntu1804-docker-8c-8g-11709 sshd[1756]: Disconnected from invalid user jenkins 10.30.104.4 port 34012 [preauth]
Nov 10 16:53:05 prd-ubuntu1804-docker-8c-8g-11709 sshd[1758]: Invalid user jenkins from 10.30.104.4 port 34040
Nov 10 16:53:06 prd-ubuntu1804-docker-8c-8g-11709 sshd[1758]: Received disconnect from 10.30.104.4 port 34040:11: Closed due to user request. [preauth]
Nov 10 16:53:06 prd-ubuntu1804-docker-8c-8g-11709 sshd[1758]: Disconnected from invalid user jenkins 10.30.104.4 port 34040 [preauth]
Nov 10 16:53:07 prd-ubuntu1804-docker-8c-8g-11709 useradd[1799]: new group: name=jenkins, GID=1001
Nov 10 16:53:07 prd-ubuntu1804-docker-8c-8g-11709 useradd[1799]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Nov 10 16:53:07 prd-ubuntu1804-docker-8c-8g-11709 usermod[1806]: add 'jenkins' to group 'docker'
Nov 10 16:53:07 prd-ubuntu1804-docker-8c-8g-11709 usermod[1806]: add 'jenkins' to shadow group 'docker'
Nov 10 16:53:07 prd-ubuntu1804-docker-8c-8g-11709 sshd[1817]: Accepted publickey for jenkins from 10.30.104.4 port 34056 ssh2: RSA SHA256:V0799BjlU//1ruj1g81rY7MeNIJkwAJ0Kr3lNX3XaN4
Nov 10 16:53:07 prd-ubuntu1804-docker-8c-8g-11709 sshd[1817]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Nov 10 16:53:07 prd-ubuntu1804-docker-8c-8g-11709 systemd-logind[1058]: New session 2 of user jenkins.
Nov 10 16:53:07 prd-ubuntu1804-docker-8c-8g-11709 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Nov 10 16:54:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[2465]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 10 16:54:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[2465]: pam_unix(cron:session): session closed for user root
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/bin/java java /usr/lib/jvm/java-17-openjdk-amd64/bin/java 1
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session closed for user root
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/bin/javac javac /usr/lib/jvm/java-17-openjdk-amd64/bin/javac 1
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session closed for user root
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/lib/jvm/java-openjdk java_sdk_openjdk /usr/lib/jvm/java-17-openjdk-amd64 1
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session closed for user root
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set java /usr/lib/jvm/java-17-openjdk-amd64/bin/java
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session closed for user root
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set javac /usr/lib/jvm/java-17-openjdk-amd64/bin/javac
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session closed for user root
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set java_sdk_openjdk /usr/lib/jvm/java-17-openjdk-amd64
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Nov 10 16:54:19 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session closed for user root
Nov 10 16:55:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[2997]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 10 16:55:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[2997]: pam_unix(cron:session): session closed for user root
Nov 10 16:56:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[3550]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 10 16:56:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[3550]: pam_unix(cron:session): session closed for user root
Nov 10 16:57:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[4648]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 10 16:57:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[4648]: pam_unix(cron:session): session closed for user root
Nov 10 16:58:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[5035]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 10 16:58:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[5035]: pam_unix(cron:session): session closed for user root
Nov 10 16:59:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[5282]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 10 16:59:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[5282]: pam_unix(cron:session): session closed for user root
Nov 10 17:00:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[5639]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 10 17:00:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[5639]: pam_unix(cron:session): session closed for user root
Nov 10 17:01:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[6035]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov 10 17:01:01 prd-ubuntu1804-docker-8c-8g-11709 CRON[6035]: pam_unix(cron:session): session closed for user root
Nov 10 17:02:01 prd-ubuntu1804-docker-8c-8g-11709 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Nov 10 17:02:01 prd-ubuntu1804-docker-8c-8g-11709 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)