Port 22

GitHub bug briefly gave valid authenticated session cookies to wrong users