Dec  1 13:34:06 prd-ubuntu1804-docker-8c-8g-16770 passwd[997]: password for 'ubuntu' changed by 'root'
Dec  1 13:34:06 prd-ubuntu1804-docker-8c-8g-16770 systemd-logind[1104]: Watching system buttons on /dev/input/event0 (Power Button)
Dec  1 13:34:06 prd-ubuntu1804-docker-8c-8g-16770 systemd-logind[1104]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Dec  1 13:34:06 prd-ubuntu1804-docker-8c-8g-16770 systemd-logind[1104]: New seat seat0.
Dec  1 13:34:06 prd-ubuntu1804-docker-8c-8g-16770 sshd[1179]: Server listening on 0.0.0.0 port 22.
Dec  1 13:34:06 prd-ubuntu1804-docker-8c-8g-16770 sshd[1179]: Server listening on :: port 22.
Dec  1 13:34:10 prd-ubuntu1804-docker-8c-8g-16770 sshd[1432]: Did not receive identification string from 10.30.104.4 port 48228
Dec  1 13:34:14 prd-ubuntu1804-docker-8c-8g-16770 sshd[1465]: Invalid user jenkins from 10.30.104.4 port 48234
Dec  1 13:34:14 prd-ubuntu1804-docker-8c-8g-16770 sshd[1465]: Received disconnect from 10.30.104.4 port 48234:11: Closed due to user request. [preauth]
Dec  1 13:34:14 prd-ubuntu1804-docker-8c-8g-16770 sshd[1465]: Disconnected from invalid user jenkins 10.30.104.4 port 48234 [preauth]
Dec  1 13:34:16 prd-ubuntu1804-docker-8c-8g-16770 sshd[1469]: Invalid user jenkins from 10.30.104.4 port 48236
Dec  1 13:34:16 prd-ubuntu1804-docker-8c-8g-16770 sshd[1469]: Received disconnect from 10.30.104.4 port 48236:11: Closed due to user request. [preauth]
Dec  1 13:34:16 prd-ubuntu1804-docker-8c-8g-16770 sshd[1469]: Disconnected from invalid user jenkins 10.30.104.4 port 48236 [preauth]
Dec  1 13:34:18 prd-ubuntu1804-docker-8c-8g-16770 sshd[1471]: Invalid user jenkins from 10.30.104.4 port 48238
Dec  1 13:34:18 prd-ubuntu1804-docker-8c-8g-16770 sshd[1471]: Received disconnect from 10.30.104.4 port 48238:11: Closed due to user request. [preauth]
Dec  1 13:34:18 prd-ubuntu1804-docker-8c-8g-16770 sshd[1471]: Disconnected from invalid user jenkins 10.30.104.4 port 48238 [preauth]
Dec  1 13:34:20 prd-ubuntu1804-docker-8c-8g-16770 sshd[1473]: Invalid user jenkins from 10.30.104.4 port 48240
Dec  1 13:34:20 prd-ubuntu1804-docker-8c-8g-16770 sshd[1473]: Received disconnect from 10.30.104.4 port 48240:11: Closed due to user request. [preauth]
Dec  1 13:34:20 prd-ubuntu1804-docker-8c-8g-16770 sshd[1473]: Disconnected from invalid user jenkins 10.30.104.4 port 48240 [preauth]
Dec  1 13:34:22 prd-ubuntu1804-docker-8c-8g-16770 sshd[1492]: Invalid user jenkins from 10.30.104.4 port 48242
Dec  1 13:34:22 prd-ubuntu1804-docker-8c-8g-16770 sshd[1492]: Received disconnect from 10.30.104.4 port 48242:11: Closed due to user request. [preauth]
Dec  1 13:34:22 prd-ubuntu1804-docker-8c-8g-16770 sshd[1492]: Disconnected from invalid user jenkins 10.30.104.4 port 48242 [preauth]
Dec  1 13:34:24 prd-ubuntu1804-docker-8c-8g-16770 sshd[1494]: Invalid user jenkins from 10.30.104.4 port 48244
Dec  1 13:34:24 prd-ubuntu1804-docker-8c-8g-16770 sshd[1494]: Received disconnect from 10.30.104.4 port 48244:11: Closed due to user request. [preauth]
Dec  1 13:34:24 prd-ubuntu1804-docker-8c-8g-16770 sshd[1494]: Disconnected from invalid user jenkins 10.30.104.4 port 48244 [preauth]
Dec  1 13:34:26 prd-ubuntu1804-docker-8c-8g-16770 sshd[1686]: Invalid user jenkins from 10.30.104.4 port 48248
Dec  1 13:34:26 prd-ubuntu1804-docker-8c-8g-16770 sshd[1686]: Received disconnect from 10.30.104.4 port 48248:11: Closed due to user request. [preauth]
Dec  1 13:34:26 prd-ubuntu1804-docker-8c-8g-16770 sshd[1686]: Disconnected from invalid user jenkins 10.30.104.4 port 48248 [preauth]
Dec  1 13:34:28 prd-ubuntu1804-docker-8c-8g-16770 sshd[1753]: Invalid user jenkins from 10.30.104.4 port 48250
Dec  1 13:34:28 prd-ubuntu1804-docker-8c-8g-16770 sshd[1753]: Received disconnect from 10.30.104.4 port 48250:11: Closed due to user request. [preauth]
Dec  1 13:34:28 prd-ubuntu1804-docker-8c-8g-16770 sshd[1753]: Disconnected from invalid user jenkins 10.30.104.4 port 48250 [preauth]
Dec  1 13:34:30 prd-ubuntu1804-docker-8c-8g-16770 sshd[1757]: Invalid user jenkins from 10.30.104.4 port 48254
Dec  1 13:34:31 prd-ubuntu1804-docker-8c-8g-16770 sshd[1757]: Received disconnect from 10.30.104.4 port 48254:11: Closed due to user request. [preauth]
Dec  1 13:34:31 prd-ubuntu1804-docker-8c-8g-16770 sshd[1757]: Disconnected from invalid user jenkins 10.30.104.4 port 48254 [preauth]
Dec  1 13:34:33 prd-ubuntu1804-docker-8c-8g-16770 sshd[1765]: Invalid user jenkins from 10.30.104.4 port 48256
Dec  1 13:34:33 prd-ubuntu1804-docker-8c-8g-16770 sshd[1765]: Received disconnect from 10.30.104.4 port 48256:11: Closed due to user request. [preauth]
Dec  1 13:34:33 prd-ubuntu1804-docker-8c-8g-16770 sshd[1765]: Disconnected from invalid user jenkins 10.30.104.4 port 48256 [preauth]
Dec  1 13:34:35 prd-ubuntu1804-docker-8c-8g-16770 sshd[1785]: Invalid user jenkins from 10.30.104.4 port 48258
Dec  1 13:34:35 prd-ubuntu1804-docker-8c-8g-16770 useradd[1787]: new group: name=jenkins, GID=1001
Dec  1 13:34:35 prd-ubuntu1804-docker-8c-8g-16770 useradd[1787]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Dec  1 13:34:35 prd-ubuntu1804-docker-8c-8g-16770 sshd[1785]: Received disconnect from 10.30.104.4 port 48258:11: Closed due to user request. [preauth]
Dec  1 13:34:35 prd-ubuntu1804-docker-8c-8g-16770 sshd[1785]: Disconnected from invalid user jenkins 10.30.104.4 port 48258 [preauth]
Dec  1 13:34:35 prd-ubuntu1804-docker-8c-8g-16770 usermod[1794]: add 'jenkins' to group 'docker'
Dec  1 13:34:35 prd-ubuntu1804-docker-8c-8g-16770 usermod[1794]: add 'jenkins' to shadow group 'docker'
Dec  1 13:34:37 prd-ubuntu1804-docker-8c-8g-16770 sshd[1877]: Accepted publickey for jenkins from 10.30.104.4 port 48260 ssh2: RSA SHA256:V0799BjlU//1ruj1g81rY7MeNIJkwAJ0Kr3lNX3XaN4
Dec  1 13:34:37 prd-ubuntu1804-docker-8c-8g-16770 sshd[1877]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Dec  1 13:34:37 prd-ubuntu1804-docker-8c-8g-16770 systemd-logind[1104]: New session 1 of user jenkins.
Dec  1 13:34:37 prd-ubuntu1804-docker-8c-8g-16770 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Dec  1 13:35:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2100]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:35:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2100]: pam_unix(cron:session): session closed for user root
Dec  1 13:36:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2108]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:36:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2108]: pam_unix(cron:session): session closed for user root
Dec  1 13:37:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2113]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:37:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2113]: pam_unix(cron:session): session closed for user root
Dec  1 13:38:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2116]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:38:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2116]: pam_unix(cron:session): session closed for user root
Dec  1 13:39:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2123]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:39:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2123]: pam_unix(cron:session): session closed for user root
Dec  1 13:40:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2161]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:40:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2161]: pam_unix(cron:session): session closed for user root
Dec  1 13:41:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2165]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:41:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2165]: pam_unix(cron:session): session closed for user root
Dec  1 13:42:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2489]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:42:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2489]: pam_unix(cron:session): session closed for user root
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/bin/java java /usr/lib/jvm/java-17-openjdk-amd64/bin/java 1
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session closed for user root
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/bin/javac javac /usr/lib/jvm/java-17-openjdk-amd64/bin/javac 1
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session closed for user root
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --install /usr/lib/jvm/java-openjdk java_sdk_openjdk /usr/lib/jvm/java-17-openjdk-amd64 1
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session closed for user root
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set java /usr/lib/jvm/java-17-openjdk-amd64/bin/java
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session closed for user root
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set javac /usr/lib/jvm/java-17-openjdk-amd64/bin/javac
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session closed for user root
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/usr/bin/update-alternatives --set java_sdk_openjdk /usr/lib/jvm/java-17-openjdk-amd64
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)
Dec  1 13:42:50 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session closed for user root
Dec  1 13:43:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2751]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:43:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[2751]: pam_unix(cron:session): session closed for user root
Dec  1 13:44:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[3171]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:44:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[3171]: pam_unix(cron:session): session closed for user root
Dec  1 13:45:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[4021]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:45:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[4021]: pam_unix(cron:session): session closed for user root
Dec  1 13:46:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[4747]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:46:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[4747]: pam_unix(cron:session): session closed for user root
Dec  1 13:47:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[5110]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:47:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[5110]: pam_unix(cron:session): session closed for user root
Dec  1 13:48:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[5486]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:48:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[5486]: pam_unix(cron:session): session closed for user root
Dec  1 13:49:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[5916]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:49:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[5916]: pam_unix(cron:session): session closed for user root
Dec  1 13:50:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[6190]: pam_unix(cron:session): session opened for user root by (uid=0)
Dec  1 13:50:01 prd-ubuntu1804-docker-8c-8g-16770 CRON[6190]: pam_unix(cron:session): session closed for user root
Dec  1 13:50:31 prd-ubuntu1804-docker-8c-8g-16770 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/policy-clamp-sonar-verify ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Dec  1 13:50:31 prd-ubuntu1804-docker-8c-8g-16770 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)