4 audit(1768434574.752:406): prog-id=119 op=LOAD
[   83.000684] audit: type=1334 audit(1768434574.752:407): prog-id=75 op=UNLOAD
[   83.003654] audit: type=1334 audit(1768434574.754:408): prog-id=120 op=LOAD
[   83.006038] audit: type=1334 audit(1768434574.754:409): prog-id=76 op=UNLOAD
[   83.008202] audit: type=1334 audit(1768434574.756:410): prog-id=121 op=LOAD
[   83.009853] audit: type=1334 audit(1768434574.756:411): prog-id=80 op=UNLOAD
[   83.011778] audit: type=1334 audit(1768434574.759:412): prog-id=122 op=LOAD
[   83.013970] audit: type=1334 audit(1768434574.759:413): prog-id=69 op=UNLOAD
[   83.016563] audit: type=1334 audit(1768434574.760:414): prog-id=123 op=LOAD
[   88.035845] kauditd_printk_skb: 54 callbacks suppressed
[   88.035850] audit: type=1334 audit(1768434579.790:455): prog-id=144 op=LOAD
[   88.039206] audit: type=1300 audit(1768434579.790:455): arch=c00000b7 syscall=280 success=yes exit=20 a0=5 a1=40001b03e8 a2=98 a3=0 items=0 ppid=3568 pid=3605 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[   88.045928] audit: type=1327 audit(1768434579.790:455): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6266316433366138333733636434343136613964333535353962656534
[   88.052384] audit: type=1334 audit(1768434579.793:456): prog-id=145 op=LOAD
[   88.054852] audit: type=1300 audit(1768434579.793:456): arch=c00000b7 syscall=280 success=yes exit=22 a0=5 a1=40001b0168 a2=98 a3=0 items=0 ppid=3568 pid=3605 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[   88.061636] audit: type=1327 audit(1768434579.793:456): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6266316433366138333733636434343136613964333535353962656534
[   88.067799] audit: type=1334 audit(1768434579.793:457): prog-id=145 op=UNLOAD
[   88.069720] audit: type=1300 audit(1768434579.793:457): arch=c00000b7 syscall=57 success=yes exit=0 a0=16 a1=0 a2=0 a3=0 items=0 ppid=3568 pid=3605 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[   88.076669] audit: type=1327 audit(1768434579.793:457): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6266316433366138333733636434343136613964333535353962656534
[   88.082558] audit: type=1334 audit(1768434579.793:458): prog-id=144 op=UNLOAD
[   99.701411] kauditd_printk_skb: 202 callbacks suppressed
[   99.701417] audit: type=1106 audit(1768434591.455:527): pid=2353 uid=500 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_limits,pam_env,pam_unix,pam_permit,pam_systemd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success'
[   99.717175] audit: type=1104 audit(1768434591.463:528): pid=2353 uid=500 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success'
[   99.797080] audit: type=1106 audit(1768434591.551:529): pid=2349 uid=0 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[   99.808022] audit: type=1104 audit(1768434591.551:530): pid=2349 uid=0 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[   99.817979] audit: type=1131 audit(1768434591.559:531): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@6-172.31.18.197:22-20.161.92.111:53680 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  106.571489] audit: type=1325 audit(1768434598.325:532): table=filter:105 family=2 entries=15 op=nft_register_rule pid=3906 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  106.577036] audit: type=1300 audit(1768434598.325:532): arch=c00000b7 syscall=211 success=yes exit=5992 a0=3 a1=ffffe93b18b0 a2=0 a3=1 items=0 ppid=3619 pid=3906 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  106.585995] audit: type=1327 audit(1768434598.325:532): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  106.590677] audit: type=1325 audit(1768434598.335:533): table=nat:106 family=2 entries=12 op=nft_register_rule pid=3906 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  106.595047] audit: type=1300 audit(1768434598.335:533): arch=c00000b7 syscall=211 success=yes exit=2700 a0=3 a1=ffffe93b18b0 a2=0 a3=1 items=0 ppid=3619 pid=3906 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  106.603944] audit: type=1327 audit(1768434598.335:533): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  106.609687] audit: type=1325 audit(1768434598.363:534): table=filter:107 family=2 entries=16 op=nft_register_rule pid=3908 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  106.613953] audit: type=1300 audit(1768434598.363:534): arch=c00000b7 syscall=211 success=yes exit=5992 a0=3 a1=fffffc991ad0 a2=0 a3=1 items=0 ppid=3619 pid=3908 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  106.621363] audit: type=1327 audit(1768434598.363:534): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  106.627040] audit: type=1325 audit(1768434598.380:535): table=nat:108 family=2 entries=12 op=nft_register_rule pid=3908 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  114.953967] kauditd_printk_skb: 2 callbacks suppressed
[  114.953973] audit: type=1325 audit(1768434606.707:536): table=filter:109 family=2 entries=17 op=nft_register_rule pid=3910 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  114.963903] audit: type=1300 audit(1768434606.707:536): arch=c00000b7 syscall=211 success=yes exit=6736 a0=3 a1=ffffed6bd020 a2=0 a3=1 items=0 ppid=3619 pid=3910 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  114.973421] audit: type=1327 audit(1768434606.707:536): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  114.978977] audit: type=1325 audit(1768434606.717:537): table=nat:110 family=2 entries=12 op=nft_register_rule pid=3910 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  114.983679] audit: type=1300 audit(1768434606.717:537): arch=c00000b7 syscall=211 success=yes exit=2700 a0=3 a1=ffffed6bd020 a2=0 a3=1 items=0 ppid=3619 pid=3910 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  114.992877] audit: type=1327 audit(1768434606.717:537): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  115.014205] audit: type=1325 audit(1768434606.768:538): table=filter:111 family=2 entries=18 op=nft_register_rule pid=3912 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  115.018471] audit: type=1300 audit(1768434606.768:538): arch=c00000b7 syscall=211 success=yes exit=6736 a0=3 a1=ffffff7f31f0 a2=0 a3=1 items=0 ppid=3619 pid=3912 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  115.026806] audit: type=1327 audit(1768434606.768:538): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  115.031016] audit: type=1325 audit(1768434606.780:539): table=nat:112 family=2 entries=12 op=nft_register_rule pid=3912 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  120.422443] kauditd_printk_skb: 8 callbacks suppressed
[  120.422449] audit: type=1325 audit(1768434612.176:542): table=filter:115 family=2 entries=21 op=nft_register_rule pid=3919 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  120.428724] audit: type=1300 audit(1768434612.176:542): arch=c00000b7 syscall=211 success=yes exit=8224 a0=3 a1=ffffd3337a90 a2=0 a3=1 items=0 ppid=3619 pid=3919 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  120.437927] audit: type=1327 audit(1768434612.176:542): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  120.443710] audit: type=1325 audit(1768434612.197:543): table=nat:116 family=2 entries=12 op=nft_register_rule pid=3919 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  120.447323] audit: type=1300 audit(1768434612.197:543): arch=c00000b7 syscall=211 success=yes exit=2700 a0=3 a1=ffffd3337a90 a2=0 a3=1 items=0 ppid=3619 pid=3919 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  120.454851] audit: type=1327 audit(1768434612.197:543): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  120.482799] audit: type=1325 audit(1768434612.236:544): table=filter:117 family=2 entries=22 op=nft_register_rule pid=3921 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  120.489431] audit: type=1300 audit(1768434612.236:544): arch=c00000b7 syscall=211 success=yes exit=8224 a0=3 a1=ffffefe48fa0 a2=0 a3=1 items=0 ppid=3619 pid=3921 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  120.502788] audit: type=1327 audit(1768434612.236:544): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  120.515796] audit: type=1325 audit(1768434612.270:545): table=nat:118 family=2 entries=12 op=nft_register_rule pid=3921 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  128.984695] kauditd_printk_skb: 96 callbacks suppressed
[  128.984701] audit: type=1334 audit(1768434620.738:580): prog-id=175 op=LOAD
[  128.988584] audit: type=1300 audit(1768434620.738:580): arch=c00000b7 syscall=280 success=yes exit=20 a0=5 a1=40001763e8 a2=98 a3=0 items=0 ppid=4008 pid=4195 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[  128.995333] audit: type=1327 audit(1768434620.738:580): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6135323661346463656438383532633431346434643736323638333761
[  129.001407] audit: type=1334 audit(1768434620.742:581): prog-id=176 op=LOAD
[  129.003095] audit: type=1300 audit(1768434620.742:581): arch=c00000b7 syscall=280 success=yes exit=22 a0=5 a1=4000176168 a2=98 a3=0 items=0 ppid=4008 pid=4195 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[  129.010730] audit: type=1327 audit(1768434620.742:581): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6135323661346463656438383532633431346434643736323638333761
[  129.017869] audit: type=1334 audit(1768434620.742:582): prog-id=176 op=UNLOAD
[  129.020501] audit: type=1300 audit(1768434620.742:582): arch=c00000b7 syscall=57 success=yes exit=0 a0=16 a1=0 a2=0 a3=0 items=0 ppid=4008 pid=4195 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[  129.026993] audit: type=1327 audit(1768434620.742:582): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6135323661346463656438383532633431346434643736323638333761
[  129.033304] audit: type=1334 audit(1768434620.742:583): prog-id=175 op=UNLOAD
[  137.573362] kauditd_printk_skb: 6 callbacks suppressed
[  137.573368] audit: type=1334 audit(1768434629.326:586): prog-id=178 op=LOAD
[  137.576718] audit: type=1300 audit(1768434629.326:586): arch=c00000b7 syscall=280 success=yes exit=20 a0=5 a1=40001763e8 a2=98 a3=0 items=0 ppid=4008 pid=4488 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[  137.582757] audit: type=1327 audit(1768434629.326:586): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6466383462653466613762346532633462366661356462336133623136
[  137.589132] audit: type=1334 audit(1768434629.330:587): prog-id=179 op=LOAD
[  137.591377] audit: type=1300 audit(1768434629.330:587): arch=c00000b7 syscall=280 success=yes exit=22 a0=5 a1=4000176168 a2=98 a3=0 items=0 ppid=4008 pid=4488 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[  137.597809] audit: type=1327 audit(1768434629.330:587): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6466383462653466613762346532633462366661356462336133623136
[  137.605232] audit: type=1334 audit(1768434629.330:588): prog-id=179 op=UNLOAD
[  137.609200] audit: type=1300 audit(1768434629.330:588): arch=c00000b7 syscall=57 success=yes exit=0 a0=16 a1=0 a2=0 a3=0 items=0 ppid=4008 pid=4488 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[  137.615684] audit: type=1327 audit(1768434629.330:588): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6466383462653466613762346532633462366661356462336133623136
[  137.621913] audit: type=1334 audit(1768434629.330:589): prog-id=178 op=UNLOAD
[  137.977964] wireguard: WireGuard 1.0.0 loaded. See www.wireguard.com for information.
[  137.979617] wireguard: Copyright (C) 2015-2019 Jason A. Donenfeld <Jason@zx2c4.com>. All Rights Reserved.
[  142.581073] kauditd_printk_skb: 247 callbacks suppressed
[  142.581079] audit: type=1325 audit(1768434634.333:673): table=filter:127 family=2 entries=36 op=nft_register_chain pid=4951 subj=system_u:system_r:kernel_t:s0 comm="iptables-nft-re"
[  142.586058] audit: type=1300 audit(1768434634.333:673): arch=c00000b7 syscall=211 success=yes exit=19576 a0=3 a1=fffff1bdbff0 a2=0 a3=ffff914aefa8 items=0 ppid=4631 pid=4951 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-nft-re" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)


This is ip-[  142.595477] audit: type=1327 audit(1768434634.333:673): proctitle=69707461626C65732D6E66742D726573746F7265002D2D6E6F666C757368002D2D766572626F7365002D2D77616974003130002D2D776169742D696E74657276616C003530303030
172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:34
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf


This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:34
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf

ip-172-31-18-197 login: [  143.018945] audit: type=1325 audit(1768434634.771:674): table=filter:128 family=2 entries=40 op=nft_register_chain pid=4979 subj=system_u:system_r:kernel_t:s0 comm="iptables-nft-re"
[  143.024035] audit: type=1300 audit(1768434634.771:674): arch=c00000b7 syscall=211 success=yes exit=20764 a0=3 a1=ffffc848fb10 a2=0 a3=ffffaae6cfa8 items=0 ppid=4631 pid=4979 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-nft-re" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  143.033513] audit: type=1327 audit(1768434634.771:674): proctitle=69707461626C65732D6E66742D726573746F7265002D2D6E6F666C757368002D2D766572626F7365002D2D77616974003130002D2D776169742D696E74657276616C003530303030
[  143.198784] audit: type=1325 audit(1768434634.951:675): table=filter:129 family=2 entries=20 op=nft_register_rule pid=5015 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  143.203468] audit: type=1300 audit(1768434634.951:675): arch=c00000b7 syscall=211 success=yes exit=7480 a0=3 a1=fffff4c7d9c0 a2=0 a3=1 items=0 ppid=3619 pid=5015 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  143.213717] audit: type=1327 audit(1768434634.951:675): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  143.219913] audit: type=1325 audit(1768434634.964:676): table=nat:130 family=2 entries=14 op=nft_register_rule pid=5015 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"


This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:35
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf


This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:35
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf

ip-172-31-18-197 login: 

This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:36
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf


This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:36
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf

ip-172-31-18-197 login: 

This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:37
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf


This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:37
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf

ip-172-31-18-197 login: 

This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:38
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf


This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:38
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf

ip-172-31-18-197 login: 

This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:39
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf


This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:39
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf

ip-172-31-18-197 login: [  147.700385] kauditd_printk_skb: 180 callbacks suppressed
[  147.700390] audit: type=1334 audit(1768434639.453:741): prog-id=257 op=LOAD
[  147.706055] audit: type=1334 audit(1768434639.458:742): prog-id=258 op=LOAD
[  147.708726] audit: type=1300 audit(1768434639.458:742): arch=c00000b7 syscall=280 success=yes exit=21 a0=5 a1=40001a0180 a2=98 a3=0 items=0 ppid=5459 pid=5473 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[  147.718790] audit: type=1327 audit(1768434639.458:742): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6665303631656539333764653139383832346365316465303637383337
[  147.727662] audit: type=1334 audit(1768434639.458:743): prog-id=258 op=UNLOAD
[  147.730545] audit: type=1300 audit(1768434639.458:743): arch=c00000b7 syscall=57 success=yes exit=0 a0=15 a1=0 a2=0 a3=0 items=0 ppid=5459 pid=5473 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[  147.741889] audit: type=1327 audit(1768434639.458:743): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6665303631656539333764653139383832346365316465303637383337
[  147.751667] audit: type=1334 audit(1768434639.458:744): prog-id=259 op=LOAD
[  147.753747] audit: type=1300 audit(1768434639.458:744): arch=c00000b7 syscall=280 success=yes exit=21 a0=5 a1=40001a03e8 a2=98 a3=0 items=0 ppid=5459 pid=5473 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/usr/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[  147.765342] audit: type=1327 audit(1768434639.458:744): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6665303631656539333764653139383832346365316465303637383337


This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:40
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf


This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:40
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf

ip-172-31-18-197 login: 

This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:41
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf


This is ip-172-31-18-197 (Linux aarch64 6.12.65-flatcar) 23:50:41
SSH host key: SHA256:HJJGrm1iD6VSy7JLXbRefX8HSiYQSwkTj+7nUM8Mh4c (ECDSA)
SSH host key: SHA256:/o7YsGbVXJt9MYLQ8YyE9sGBrXo+/oIpu8c+8K/8K5s (RSA)
SSH host key: SHA256:n2YP1Z2EYGNr/GGjyrN74hOAj0BwEBoHBcP1lEkrC5A (ED25519)
eth0: 172.31.18.197 fe80::4d9:acff:fe97:cbf

ip-172-31-18-197 login: [  154.649118] kauditd_printk_skb: 64 callbacks suppressed
[  154.649123] audit: type=1130 audit(1768434646.402:767): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@7-172.31.18.197:22-20.161.92.111:44136 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  155.169914] audit: type=1101 audit(1768434646.923:768): pid=5576 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  155.176419] audit: type=1103 audit(1768434646.929:769): pid=5576 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  155.183336] audit: type=1006 audit(1768434646.929:770): pid=5576 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=8 res=1
[  155.186724] audit: type=1300 audit(1768434646.929:770): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=ffffe4f93630 a2=3 a3=0 items=0 ppid=1 pid=5576 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=8 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  155.193223] audit: type=1327 audit(1768434646.929:770): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  155.213594] audit: type=1105 audit(1768434646.966:771): pid=5576 uid=0 auid=500 ses=8 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  155.221115] audit: type=1103 audit(1768434646.974:772): pid=5579 uid=0 auid=500 ses=8 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  155.569136] audit: type=1106 audit(1768434647.321:773): pid=5576 uid=0 auid=500 ses=8 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  155.576656] audit: type=1104 audit(1768434647.321:774): pid=5576 uid=0 auid=500 ses=8 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  160.660845] kauditd_printk_skb: 1 callbacks suppressed
[  160.660850] audit: type=1130 audit(1768434652.414:776): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@8-172.31.18.197:22-20.161.92.111:40416 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  161.138457] audit: type=1101 audit(1768434652.891:777): pid=5595 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  161.145019] audit: type=1103 audit(1768434652.898:778): pid=5595 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  161.150947] audit: type=1006 audit(1768434652.898:779): pid=5595 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=9 res=1
[  161.155660] audit: type=1300 audit(1768434652.898:779): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=ffffee7b53b0 a2=3 a3=0 items=0 ppid=1 pid=5595 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=9 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  161.162204] audit: type=1327 audit(1768434652.898:779): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  161.181871] audit: type=1105 audit(1768434652.935:780): pid=5595 uid=0 auid=500 ses=9 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  161.189832] audit: type=1103 audit(1768434652.943:781): pid=5598 uid=0 auid=500 ses=9 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  161.520323] audit: type=1106 audit(1768434653.273:782): pid=5595 uid=0 auid=500 ses=9 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  161.528153] audit: type=1104 audit(1768434653.274:783): pid=5595 uid=0 auid=500 ses=9 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  166.617640] kauditd_printk_skb: 1 callbacks suppressed
[  166.617645] audit: type=1130 audit(1768434658.370:785): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@9-172.31.18.197:22-20.161.92.111:40430 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  167.105177] audit: type=1101 audit(1768434658.858:786): pid=5619 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  167.114485] audit: type=1103 audit(1768434658.865:787): pid=5619 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  167.121250] audit: type=1006 audit(1768434658.865:788): pid=5619 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=10 res=1
[  167.125117] audit: type=1300 audit(1768434658.865:788): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=ffffd6b75280 a2=3 a3=0 items=0 ppid=1 pid=5619 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=10 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  167.133143] audit: type=1327 audit(1768434658.865:788): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  167.148398] audit: type=1105 audit(1768434658.901:789): pid=5619 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  167.156188] audit: type=1103 audit(1768434658.909:790): pid=5622 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  167.497915] audit: type=1106 audit(1768434659.250:791): pid=5619 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  167.505952] audit: type=1104 audit(1768434659.250:792): pid=5619 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  174.596155] kauditd_printk_skb: 23 callbacks suppressed
[  174.596161] audit: type=1130 audit(1768434666.349:812): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@12-172.31.18.197:22-20.161.92.111:34834 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  175.086531] audit: type=1101 audit(1768434666.839:813): pid=5697 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  175.094989] audit: type=1103 audit(1768434666.848:814): pid=5697 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  175.101194] audit: type=1006 audit(1768434666.848:815): pid=5697 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=13 res=1
[  175.105031] audit: type=1300 audit(1768434666.848:815): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=ffffe2c324a0 a2=3 a3=0 items=0 ppid=1 pid=5697 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=13 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  175.112132] audit: type=1327 audit(1768434666.848:815): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  175.141899] audit: type=1105 audit(1768434666.894:816): pid=5697 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  175.148825] audit: type=1103 audit(1768434666.898:817): pid=5700 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  175.467378] audit: type=1106 audit(1768434667.220:818): pid=5697 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  175.474891] audit: type=1104 audit(1768434667.222:819): pid=5697 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  180.569666] kauditd_printk_skb: 1 callbacks suppressed
[  180.569671] audit: type=1130 audit(1768434672.322:821): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@13-172.31.18.197:22-20.161.92.111:34848 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  181.062545] audit: type=1101 audit(1768434672.815:822): pid=5717 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  181.070811] audit: type=1103 audit(1768434672.823:823): pid=5717 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  181.077762] audit: type=1006 audit(1768434672.824:824): pid=5717 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=14 res=1
[  181.081397] audit: type=1300 audit(1768434672.824:824): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=ffffe8956660 a2=3 a3=0 items=0 ppid=1 pid=5717 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=14 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  181.088555] audit: type=1327 audit(1768434672.824:824): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  181.102786] audit: type=1105 audit(1768434672.856:825): pid=5717 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  181.110642] audit: type=1103 audit(1768434672.863:826): pid=5720 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  181.533844] audit: type=1106 audit(1768434673.285:827): pid=5717 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  181.549674] audit: type=1104 audit(1768434673.285:828): pid=5717 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  186.628656] kauditd_printk_skb: 1 callbacks suppressed
[  186.628662] audit: type=1130 audit(1768434678.381:830): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@14-172.31.18.197:22-20.161.92.111:37828 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  187.141676] audit: type=1101 audit(1768434678.894:831): pid=5737 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  187.149875] audit: type=1103 audit(1768434678.901:832): pid=5737 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  187.155692] audit: type=1006 audit(1768434678.901:833): pid=5737 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=15 res=1
[  187.159317] audit: type=1300 audit(1768434678.901:833): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=ffffea65e020 a2=3 a3=0 items=0 ppid=1 pid=5737 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=15 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  187.165545] audit: type=1327 audit(1768434678.901:833): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  187.202260] audit: type=1105 audit(1768434678.955:834): pid=5737 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  187.212883] audit: type=1103 audit(1768434678.963:835): pid=5740 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  187.557691] audit: type=1106 audit(1768434679.310:836): pid=5737 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  187.564838] audit: type=1104 audit(1768434679.310:837): pid=5737 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  192.653885] kauditd_printk_skb: 1 callbacks suppressed
[  192.653891] audit: type=1130 audit(1768434684.406:839): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@15-172.31.18.197:22-20.161.92.111:45400 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  193.130390] audit: type=1101 audit(1768434684.883:840): pid=5756 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  193.137680] audit: type=1103 audit(1768434684.890:841): pid=5756 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  193.143159] audit: type=1006 audit(1768434684.890:842): pid=5756 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=16 res=1
[  193.147658] audit: type=1300 audit(1768434684.890:842): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=ffffeca1eea0 a2=3 a3=0 items=0 ppid=1 pid=5756 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=16 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  193.154664] audit: type=1327 audit(1768434684.890:842): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  193.183658] audit: type=1105 audit(1768434684.936:843): pid=5756 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  193.191847] audit: type=1103 audit(1768434684.945:844): pid=5759 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  193.516753] audit: type=1106 audit(1768434685.269:845): pid=5756 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  193.524675] audit: type=1104 audit(1768434685.273:846): pid=5756 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  198.009863] kauditd_printk_skb: 36 callbacks suppressed
[  198.009869] audit: type=1101 audit(1768434689.763:871): pid=5810 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  198.017584] audit: type=1103 audit(1768434689.770:872): pid=5810 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  198.023670] audit: type=1006 audit(1768434689.770:873): pid=5810 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=19 res=1
[  198.028108] audit: type=1300 audit(1768434689.770:873): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=fffff35dd680 a2=3 a3=0 items=0 ppid=1 pid=5810 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=19 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  198.034689] audit: type=1327 audit(1768434689.770:873): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  198.055829] audit: type=1105 audit(1768434689.809:874): pid=5810 uid=0 auid=500 ses=19 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  198.063340] audit: type=1103 audit(1768434689.816:875): pid=5813 uid=0 auid=500 ses=19 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  198.662215] audit: type=1106 audit(1768434690.415:876): pid=5810 uid=0 auid=500 ses=19 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  198.671650] audit: type=1104 audit(1768434690.415:877): pid=5810 uid=0 auid=500 ses=19 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  198.678497] audit: type=1131 audit(1768434690.423:878): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@18-172.31.18.197:22-20.161.92.111:45412 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  204.483106] kauditd_printk_skb: 11 callbacks suppressed
[  204.483112] audit: type=1325 audit(1768434696.235:888): table=filter:153 family=2 entries=26 op=nft_register_rule pid=5867 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  204.488696] audit: type=1300 audit(1768434696.235:888): arch=c00000b7 syscall=211 success=yes exit=5248 a0=3 a1=ffffe9c947f0 a2=0 a3=1 items=0 ppid=3619 pid=5867 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  204.496043] audit: type=1327 audit(1768434696.235:888): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  204.501567] audit: type=1325 audit(1768434696.253:889): table=nat:154 family=2 entries=104 op=nft_register_chain pid=5867 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[  204.505369] audit: type=1300 audit(1768434696.253:889): arch=c00000b7 syscall=211 success=yes exit=48684 a0=3 a1=ffffe9c947f0 a2=0 a3=1 items=0 ppid=3619 pid=5867 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[  204.512579] audit: type=1327 audit(1768434696.253:889): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[  204.709221] audit: type=1130 audit(1768434696.462:890): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@20-172.31.18.197:22-20.161.92.111:48902 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  205.171209] audit: type=1101 audit(1768434696.924:891): pid=5869 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  205.179012] audit: type=1103 audit(1768434696.932:892): pid=5869 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  205.185945] audit: type=1006 audit(1768434696.932:893): pid=5869 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=21 res=1
[  210.632340] kauditd_printk_skb: 7 callbacks suppressed
[  210.632346] audit: type=1130 audit(1768434702.385:899): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@21-172.31.18.197:22-20.161.92.111:48910 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  211.097985] audit: type=1101 audit(1768434702.851:900): pid=5887 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  211.106096] audit: type=1103 audit(1768434702.859:901): pid=5887 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  211.111796] audit: type=1006 audit(1768434702.859:902): pid=5887 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=22 res=1
[  211.115334] audit: type=1300 audit(1768434702.859:902): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=ffffd4d54e90 a2=3 a3=0 items=0 ppid=1 pid=5887 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=22 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  211.122521] audit: type=1327 audit(1768434702.859:902): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  211.143694] audit: type=1105 audit(1768434702.897:903): pid=5887 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  211.151379] audit: type=1103 audit(1768434702.904:904): pid=5890 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  211.563133] audit: type=1106 audit(1768434703.316:905): pid=5887 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  211.580654] audit: type=1104 audit(1768434703.316:906): pid=5887 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  216.649497] kauditd_printk_skb: 1 callbacks suppressed
[  216.649503] audit: type=1130 audit(1768434708.402:908): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@22-172.31.18.197:22-20.161.92.111:57702 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  217.132031] audit: type=1101 audit(1768434708.885:909): pid=5903 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  217.141968] audit: type=1103 audit(1768434708.894:910): pid=5903 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  217.153379] audit: type=1006 audit(1768434708.894:911): pid=5903 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=23 res=1
[  217.161718] audit: type=1300 audit(1768434708.894:911): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=ffffc6c3b7d0 a2=3 a3=0 items=0 ppid=1 pid=5903 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=23 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  217.167801] audit: type=1327 audit(1768434708.894:911): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  217.183878] audit: type=1105 audit(1768434708.936:912): pid=5903 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  217.195483] audit: type=1103 audit(1768434708.948:913): pid=5906 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  217.567687] audit: type=1106 audit(1768434709.319:914): pid=5903 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  217.574768] audit: type=1104 audit(1768434709.319:915): pid=5903 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  222.662662] kauditd_printk_skb: 1 callbacks suppressed
[  222.662669] audit: type=1130 audit(1768434714.414:917): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@23-172.31.18.197:22-20.161.92.111:58228 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  223.168032] audit: type=1101 audit(1768434714.921:918): pid=5924 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  223.176306] audit: type=1103 audit(1768434714.929:919): pid=5924 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  223.184182] audit: type=1006 audit(1768434714.929:920): pid=5924 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=24 res=1
[  223.189069] audit: type=1300 audit(1768434714.929:920): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=ffffe5731430 a2=3 a3=0 items=0 ppid=1 pid=5924 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=24 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  223.197337] audit: type=1327 audit(1768434714.929:920): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  223.220366] audit: type=1105 audit(1768434714.973:921): pid=5924 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  223.227175] audit: type=1103 audit(1768434714.973:922): pid=5927 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  223.581647] audit: type=1106 audit(1768434715.334:923): pid=5924 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  223.590591] audit: type=1104 audit(1768434715.335:924): pid=5924 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  228.669848] kauditd_printk_skb: 1 callbacks suppressed
[  228.669854] audit: type=1130 audit(1768434720.423:926): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@24-172.31.18.197:22-20.161.92.111:58238 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[  229.173848] audit: type=1101 audit(1768434720.927:927): pid=5940 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  229.186072] audit: type=1103 audit(1768434720.936:928): pid=5940 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  229.195702] audit: type=1006 audit(1768434720.936:929): pid=5940 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=25 res=1
[  229.201177] audit: type=1300 audit(1768434720.936:929): arch=c00000b7 syscall=64 success=yes exit=3 a0=8 a1=fffffd36e000 a2=3 a3=0 items=0 ppid=1 pid=5940 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=25 comm="sshd-session" exe="/usr/lib64/misc/sshd-session" subj=system_u:system_r:kernel_t:s0 key=(null)
[  229.215658] audit: type=1327 audit(1768434720.936:929): proctitle=737368642D73657373696F6E3A20636F7265205B707269765D
[  229.234048] audit: type=1105 audit(1768434720.987:930): pid=5940 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  229.244447] audit: type=1103 audit(1768434720.996:931): pid=5967 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  229.633546] audit: type=1106 audit(1768434721.386:932): pid=5940 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'
[  229.650303] audit: type=1104 audit(1768434721.387:933): pid=5940 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/lib64/misc/sshd-session" hostname=20.161.92.111 addr=20.161.92.111 terminal=ssh res=success'