How to use nmap and dns resolution of nmap over proxy? I tried proxychains, but for dns resolution it doesn't work, it's known bug as I read on some forums. It works well without dns_proxy feature in proxychains config. But I need to proxy dns resolution requests. sudo proxychains nmap -T4 -sV -Pn -A --reason -v scanme.nmap.org I tried proxychains4 (or proxychains-ng), but with nmap it does scanning and send all the packets synchronously, so for example for scan of one host it's needed to wait for 30 min or ever longer. So it's not the option, but it works well. sudo proxychains4 nmap -T4 -sV -Pn -A --reason -v scanme.nmap.org I tried just like this with inside nmap proxy function: sudo nmap --proxy socks4://127.0.0.1:9050 -T4 -sV -Pn -A --reason -v scanme.nmap.org But does it dns resolution requests over the tor proxy 127.0.0.1:9050 or only scan? It seems it doesn't. What is the solution?

How is tails system wide proxy configured in tails? Tails have non-null variables SOCKS5_SERVER, SOCKS_SERVER set to 127.0.0.1:9050 but I guess this is not enough to force all connections to be proxied.

As part of a research I am doing I am trying to install TOR package on a Amazon ec2 server. I have added the repo name to my repos configuration (following this tutorial: https://www.torproject.org/docs/rpms.html.en) When attempting to install the tor package using sudo yum install tor I get the following error: > Loaded plugins: priorities, update-motd, upgrade-helper amzn-main/latest | 2.1 kB 00:00 amzn-updates/latest | 2.3 kB 00:00 Resolving Dependencies --> Running transaction check ---> Package tor.x86_64 0:0.2.7.6-tor.1.rh7_1_1503 will be installed --> Processing Dependency: openssl-libs >= 1.0.1 for package: tor-0.2.7.6-tor.1.rh7_1_1503.x86_64 --> Finished Dependency Resolution **Error: Package: tor-0.2.7.6-tor.1.rh7_1_1503.x86_64 (tor) Requires: openssl-libs >= 1.0.1** You could try using --skip-broken to work around the problem You could try running: rpm -Va --nofiles --nodigest And so I tried to install openssl and I found out that it is already installed. Has anyone encountered this problem before? Any solutions would be a great help! Thank you in advance!

When I try to access a hidden service on TOR using cURL, for some reason I'm not getting access to the site 100% of the time. Many times it returns "curl: (7) Can't complete SOCKS5 connection to 0.0.0.0:0. (5)" Is there something I can do to configure cURL to work better with TOR? Here is the output I'm getting: root@Dexter:~# curl --proxy socks5h://localhost:9050 http://5ztppjwojkuslibm.onion/ curl: (7) Can't complete SOCKS5 connection to 0.0.0.0:0. (5) root@Dexter:~# curl --proxy socks5h://localhost:9050 http://5ztppjwojkuslibm.onion/ curl: (7) Can't complete SOCKS5 connection to 0.0.0.0:0. (5) root@Dexter:~# curl --proxy socks5h://localhost:9050 http://5ztppjwojkuslibm.onion/ curl: (18) transfer closed with 1 bytes remaining to read

This is a test page to see if I can run a hidden tor service!

Looks like it's working!

root@Dexter:~# root@Dexter:~# curl --proxy socks5h://localhost:9050 http://5ztppjwojkuslibm.onion/ curl: (18) transfer closed with 1 bytes remaining to read

This is a test page to see if I can run a hidden tor service!

Looks like it's working!

root@Dexter:~#

Trying to install tor through this websites guide. Working well, until I reach a SIGNATURE VERIFICATION FAILED error. They said to run this command to fix the key: gpg --homedir "$HOME/.local/share/torbrowser/gnupg_homedir" --refresh-keys --keyserver keyserver.ubuntu.com Which falls into a gpg: no valid OpenPGP data found error. I tried this stackoverflow, but it contains a variety of nonspecific answers, all either concerning wget or curl. A similar issue was discussed here , but the answer was this command, which is where I'm having trouble. I deleted and reset my .gnupg folder, but I still hit the same error for some reason. Any ideas?

I am using selektor, which is similar to vidalia tor bundle. The default settings, use safe socks with port number 9054. It is fine and when I set the firefox proxy to "use system proxy", I can access blocked website, e. g. www.torproject.org As I enter wget http://torproject.org , that will not use the vpn established. What can I do, in oder to make it work? I don't want to use a prefix such as foo wget www.torproject.org. Is there any way to define a socks_proxy variable? I see http_proxy which is not appropriate here. Any idea?

The latest tails comes with nodejs v10.24.0. Trying to get tails to run a newer node has been unsuccessful even after running script from deb.nodesource.com/setup_14x which said buster was unsupported. I think updating node was a red herring anyway. npm is not included so I use

apt install npm

to install npm. I get version 5.8.0. I need npm to install create-react-app and other node tools. All npm commands return warning Npm does not support node.js v10.24.0 (hence the red herring to update that) In persistant storage I create a directory "foo" and cd to foo, I run

init

And then

install

And in addition to the warning above it seems to fail to connect to registry.npmjs.org:443 with getaddrinfo EAI_AGAIN Putting that url into the tor browser connects just fine. My current working theory is that I need to configure npm proxy and npm https-proxy, but for that I seem to require proxy credentials, url, and port. I don't know what those are or how to find them in tails. I am not behind any other proxy besides tor running in Tails. Question: how to make npm work in tails.

I am using and giving a try in Csi Linux distro. She has TorVPN that, at least in theory, routes all the traffic through Tor Network. After service tor status commando I see the service is up. I tried several things, then I'll summarize. I modified a little DNS configurations as a clue of AI. Gone far from the target. Nevertheless, the connection is normal as not using TorVPN. Resuming, it has internet if TorVPN is out the game.

How can I host a Tor site with Apache on FreeBSD 13.3-RELEASE-p1? Apache is serving multiple sites from this server, so each one has its own entry in /usr/local/etc/apache24/extra/httpd-vhosts.conf The clearnet sites in httpd-vhosts.conf are accessible; only the Tor site is inaccessible. Tor Browser says "Onionsite Not Found". Here's what I've done:

pkg install tor

added

="YES"

to /etc/rc.conf added these /usr/local/etc/tor/torrc lines:

HiddenServiceDir /usr/home/tor/hidden_services/mysite
HiddenServicePort 80 127.0.0.1:9000

added this httpd-vhosts.conf entry:

DocumentRoot "/usr/home/valerica/web/mysite"
    Options Indexes

I ran

mkdir /usr/home/tor/hidden_services

and then recursively copied the 'mysite' folder containing the hostname and key to that directory. The index.html file is in /usr/home/valerica/web/mysite I ran

chown -R _tor:_tor /usr/home/tor

and

chgrp -R www /usr/home/valerica/web/mysite

. I added these rules to /etc/rc.firewall and restarted ipfw:

${fwcmd} add allow tcp from localhost to localhost 9000 in
${fwcmd} add allow tcp from localhost to localhost 9000 out
${fwcmd} add allow udp from localhost to localhost 9000 in
${fwcmd} add allow udp from localhost to localhost 9000 out

I've also restarted the apache24 and tor services. I haven't edited /usr/local/etc/rc.d/tor

service tor status

shows it running as PID 43767.

top

shows PID 43767 under the username _tor I hope it's alright that I made ~/tor instead of ~/_tor Output of

curl localhost:9000

:

403 Forbidden

Forbidden
You don't have permission to access this resource.

Output of

tail /var/log/tor/debug.log

:

May 28 20:05:04.000 [debug] connection_or_process_cells_from_inbuf: 11: starting, inbuf_datalen 0 (0 pending in tls object).
May 28 20:05:05.000 [debug] circuit_remove_handled_ports: Port 443 is already being handled; removing.
May 28 20:05:06.000 [debug] circuit_remove_handled_ports: Port 443 is already being handled; removing.
May 28 20:05:07.000 [debug] conn_read_callback: socket 10 wants to read.
May 28 20:05:07.000 [debug] connection_buf_read_from_socket: 10: starting, inbuf_datalen 0 (0 pending in tls object). at_most 16448.
May 28 20:05:07.000 [debug] tor_tls_read: read returned r=-1, err=-2
May 28 20:05:07.000 [debug] connection_buf_read_from_socket: After TLS read of 514: 536 read, 0 written
May 28 20:05:07.000 [debug] connection_or_process_cells_from_inbuf: 10: starting, inbuf_datalen 514 (0 pending in tls object).
May 28 20:05:07.000 [debug] connection_or_process_cells_from_inbuf: 10: starting, inbuf_datalen 0 (0 pending in tls object).
May 28 20:05:07.000 [debug] circuit_remove_handled_ports: Port 443 is already being handled; removing.

Output of

tail /var/log/tor/notices.log

:

May 28 19:32:56.000 [notice] Bootstrapped 0% (starting): Starting
May 28 19:32:57.000 [notice] Starting with guard context "default"
May 28 19:32:58.000 [notice] Bootstrapped 5% (conn): Connecting to a relay
May 28 19:32:58.000 [notice] Bootstrapped 10% (conn_done): Connected to a relay
May 28 19:32:58.000 [notice] Bootstrapped 14% (handshake): Handshaking with a relay
May 28 19:32:58.000 [notice] Bootstrapped 15% (handshake_done): Handshake with a relay done
May 28 19:32:58.000 [notice] Bootstrapped 75% (enough_dirinfo): Loaded enough directory info to build circuits
May 28 19:32:58.000 [notice] Bootstrapped 90% (ap_handshake_done): Handshake finished with a relay to build circuits
May 28 19:32:58.000 [notice] Bootstrapped 95% (circuit_create): Establishing a Tor circuit
May 28 19:33:01.000 [notice] Bootstrapped 100% (done): Done

Output of

/var/log/httpd-error.log

:

[Sat May 25 21:57:22.709897 2024] [authz_core:error] [pid 99770] [client ::1:41065] AH01630: client denied by server configuration: /usr/home/valerica/web/mysite/
[Sun May 26 22:18:19.858239 2024] [authz_core:error] [pid 59339] [client ::1:20232] AH01630: client denied by server configuration: /usr/home/valerica/web/mysite/
[Sun May 26 22:18:48.674420 2024] [authz_core:error] [pid 61386] [client ::1:36639] AH01630: client denied by server configuration: /usr/home/valerica/web/mysite/
[Sun May 26 22:26:27.478983 2024] [authz_core:error] [pid 58324] [client ::1:40857] AH01630: client denied by server configuration: /usr/home/valerica/web/mysite/
[Mon May 27 23:20:13.835594 2024] [mpm_prefork:notice] [pid 52148] AH00169: caught SIGTERM, shutting down
[Tue May 28 19:20:27.161256 2024] [ssl:warn] [pid 45493] AH01873: Init: Session Cache is not configured [hint: SSLSessionCache]
[Tue May 28 19:20:27.166759 2024] [mpm_prefork:notice] [pid 45493] AH00163: Apache/2.4.59 (FreeBSD) OpenSSL/1.1.1w-freebsd configured -- resuming normal operations
[Tue May 28 19:20:27.166799 2024] [core:notice] [pid 45493] AH00094: Command line: '/usr/local/sbin/httpd -D NOHTTPACCEPT'
[Tue May 28 20:02:12.493897 2024] [authz_core:error] [pid 45729] [client ::1:33829] AH01630: client denied by server configuration: /usr/home/valerica/web/mysite/
[Tue May 28 20:02:32.525644 2024] [authz_core:error] [pid 45752] [client ::1:13141] AH01630: client denied by server configuration: /usr/home/valerica/web/mysite/

EDIT - I forgot to mention /usr/local/etc/apache24/httpd.conf has these lines:

Listen 80
Listen 9000

httpd.conf also has a

section for the clearnet sites.

I'm trying to understand why TOR does not start as a service on my FreeBSD 13.2. This is the error message that I see during the boot : [notice] Tor 0.4.8.9 running on FreeBSD with Libevent 2.1.12- stable, OpenSSL 1.1.1t-freebsd, Zlib 1.2.13, Liblzma 5.4.1, Libzstd 1.5.5 and BSD 1302001 as libc. [notice] Tor can't help you if you use it wrong! Learn how to be safe at [URL]https://support.torproject.org/faq/staying-anonymous /[/URL] [notice] Read configuration file "/usr/local/etc/tor/torrc". [notice] You configured a non-loopback address '192.168.1.2:9100' for SocksPort. This allows everybody on your local network to use your machine as a proxy. Make sure this is what you wanted. [notice] Opening Socks listener on 127.0.0.1:9050 [notice] Opened Socks listener connection (ready) on 127.0.0.1:9050 [notice] Opening Socks listener on 192.168.1.2:9100 [notice] Opened Socks listener connection (ready) on 192.168.1.2:9100 [warn] /var/db/tor is not owned by this user (_tor, 256) but by root (0). Perhaps you are running Tor as the wrong user? [notice] Closing partially-constructed Socks listener connection (ready) on 127.0.0.1:9050 [notice] Closing partially-constructed Socks listener connection (ready) on 192.168.1.2:9100 [warn] Failed to parse/validate config: Couldn't create private data directory "/var/db/tor" [err] Reading config failed--see warnings above. /etc/rc: WARNING: failed to start tor and this is the TOR config file : SOCKSPort 9050 SOCKSPort 192.168.1.2:9100 RunAsDaemon 1 DataDirectory /var/db/tor Nickname me ContactInfo me ExitRelay 0 ExitNodes {ch} StrictNodes 0

I configured proxychains following a couple tutorials on the web which were pretty much all the same, as they showed the configuration using Tor service. The problem I'm having is that my DNS is being leaked as well as my real IP address. When I start Firefox with proxychains Google sometimes shows I'm on the other side of the globe but still shows my real IP address when prompted for captcha and other times it shows the city I live in. I did a [DNS leak test](https://dnsleaktest.com/) as well which didn't show my location or network provider at all, but on [WhatIsMyIpAddress](https://whatismyipaddress.com/) it showed all of my info. I use Firefox with no additional proxy settings in the browser. I tried using free proxies, but every single one of them, regardless if HTTP, SOCKS4-5 gets timed out. I don't really want to use free proxies, I'd rather use the Tor service but I can't get it to work properly. The distro I use is Mint 20.3 (Una). The proxychains.conf file: # proxychains.conf VER 3.1 # # HTTP, SOCKS4, SOCKS5 tunneling proxifier with DNS. # # The option below identifies how the ProxyList is treated. # only one option should be uncommented at time, # otherwise the last appearing option will be accepted # dynamic_chain # # Dynamic - Each connection will be done via chained proxies # all proxies chained in the order as they appear in the list # at least one proxy must be online to play in chain # (dead proxies are skipped) # otherwise EINTR is returned to the app # #strict_chain # # Strict - Each connection will be done via chained proxies # all proxies chained in the order as they appear in the list # all proxies must be online to play in chain # otherwise EINTR is returned to the app # #random_chain # # Random - Each connection will be done via random proxy # (or proxy chain, see chain_len) from the list. # this option is good to test your IDS :) # Make sense only if random_chain #chain_len = 2 # Quiet mode (no output from library) #quiet_mode Proxy DNS requests - no leak for DNS data proxy_dns # Some timeouts in milliseconds tcp_read_time_out 15000 tcp_connect_time_out 8000 # ProxyList format # type host port [user pass] # (values separated by 'tab' or 'blank') # # # Examples: # # socks5 192.168.67.78 1080 lamer secret # http 192.168.89.3 8080 justu hidden # socks4 192.168.1.49 1080 # http 192.168.39.93 8080 # # # proxy types: http, socks4, socks5 # ( auth types supported: "basic"-http "user/pass"-socks ) # # [ProxyList] # add proxy here ... # meanwile # defaults set to "tor" socks4 127.0.0.1 9050 socks5 127.0.0.1 9050

How to install Tor Browser in Kali linux? Is it possible to install Tor Browser using the package manager in the same way as Debian 11?

The following Mullvad documentation describes how to get an OpenVPN VPN to connect over Tor: https://mullvad.net/es/help/tor-and-mullvad-vpn/ I would like to achieve the same result but using Wireguard instead of OpenVPN. What edits do I need to make to my Wireguard .conf file to achieve this result? Thank you

Tor Browser conceals the user's operating system by spoofing user agents. Currently it is Mozilla/5.0 (Windows NT 10.0; rv:102.0) Gecko/20100101 Firefox/102.0. I decided to test whether the function actually does its job by visiting multiple detection websites on Tor Browser in both Windows and Linux then comparing the results. 1. GIMP Download Page(https://www.gimp.org/downloads/) 1) Tor Browser on Linux (we think your OS is Linux) 2) Tor Browser on Windows 11 (we think your OS is Microsoft Windows) 2. https://bowser-js.github.io/bowser-online/ 1) Tor Browser on Linux

Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101
        
        Firefox/102.0
        browser
        	name	"Firefox"
        	version	"102.0"
        os
        	name	"Linux"
        platform
        	type	"desktop"
        engine
        	name	"Gecko"
        	version	"20100101"

2) Tor Browser on Windows 11

Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0
        
        browser
        	name	"Firefox"
        	version	"102.0"
        os
        	name	"Windows"
        	version "NT 10.0"
        	versionName "10"
        platform
        	type	"desktop"
        engine
        	name	"Gecko"
        	version	"20100101"

3. https://useragentstring.com 1) Tor Browser on Linux

Mozilla/5.0 (Windows NT 10.0; rv:102.0) Gecko/20100101 Firefox/102.0
        Firefox 102.0
        	Mozilla	MozillaProductSlice. Claims to be a Mozilla based user agent, which is only true for Gecko browsers like Firefox and Netscape. For all other user agents it means 'Mozilla-compatible'. In modern browsers, this is only used for historical reasons. It has no real meaning anymore
        	5.0	Mozilla version
        	Windows NT 10.0		Operating System: Windows 10
        	rv:102.0	CVS Branch Tag The version of Gecko being used in the browser
        	Gecko	Gecko engine inside
        	20100101	Build Date: the date the browser was built
        	Firefox	Name : Firefox
        	102.0	Firefox version

2) Tor Browser on Windows 11

Mozilla/5.0 (Windows NT 10.0; rv:102.0) Gecko/20100101 Firefox/102.0
        Firefox 102.0
        	Mozilla	MozillaProductSlice. Claims to be a Mozilla based user agent, which is only true for Gecko browsers like Firefox and Netscape. For all other user agents it means 'Mozilla-compatible'. In modern browsers, this is only used for historical reasons. It has no real meaning anymore
        	5.0	Mozilla version
        	Windows NT 10.0		Operating System: Windows 10
        	rv:102.0	CVS Branch Tag The version of Gecko being used in the browser
        	Gecko	Gecko engine inside
        	20100101	Build Date: the date the browser was built
        	Firefox	Name : Firefox
        	102.0	Firefox version

So Tor on Windows was able to hide the fact that Windows 11 was run instead of 10. But the Linux version was unable to hide the fact that Linux was the OS. I ran all tests with no extensions except the built-in

. Also 2-b) shows an additional

; x64;

that is not present in the user agent. How are websites able to deanonymize your OS? Are there subtle differences in implementation that cannot be covered by user agent spoofing? Is there a way for Tor on Linux to blend in with Tor on Windows?

is a command that forces programs to use Tor. I tested its effectiveness by curling a site that returns my external IP.

$ torsocks curl ip.me
109.70.100.1

Then I searched the IP on the official Relay Search website to confirm that curl indeed used a Tor Exit Node. https://metrics.torproject.org/rs.html#search/109.70.100.1 https://metrics.torproject.org/rs.html#details/5788CEC0A7C5EE251FC72C55730A6B1FCAEA1D93 I was given node 'ruebe' in Austria. After the successful experiment I wondered if I could run vanilla Firefox through Tor. I know Tor Browser is the recommended browser but some websites just don't work in it. First I made sure Firefox was functional.

$ firefox
(Firefox opens)
Missing chrome or resource URL: resource://gre/modules/UpdateListener.jsm
Missing chrome or resource URL: resource://gre/modules/UpdateListener.sys.mjs

Throws two warnings but otherwise works. Then I tried running it through Tor.

$ torsocks firefox

It was running forever but no window opened. Is torsocks not meant to be used with GUI or does it require more configuration? If torsocks is not compatible with GUI apps, what is the right way to run Firefox through Tor?

Is it ok for me to drop all types of ICMP packets? I.e. iptables -I INPUT -p icmp -j DROP. Everything except one service seems to work. I already stopped this service. To be specific I functioned as non-exit Tor relay and that seems to have stopped working. In 2 days I dropped 107K ICMP packets, which seems excessive to me, isn't that so? Note, that I run some other services (on open ports) like Bitcoin.

I was trying to remove, then reinstall, **tor** browser. **apt** is now no longer working; *sudo apt update* >E: Conflicting values set for option Signed-By regarding source https://deb.torproject.org/torproject.org/ focal: /usr/share/keyrings/deb.torproject.org-keyring.gpg != /usr/share/keyrings/tor-archive-keyring.gpg E: The list of sources could not be read. I tried removing /usr/share/keyrings/deb.torproject.org-keyring.gpg and /usr/share/keyrings/tor-archive-keyring.gpg to **no** effect..

I have tried to use these rules with iptables but after I have used same rules in ip6tables, it has blocked everything. Why do my ip6tables rules block everything?

iptables -F OUTPUT
iptables -A OUTPUT -j ACCEPT -m owner --uid-owner debian-tor
iptables -A OUTPUT -j ACCEPT -o lo
iptables -P OUTPUT DROP


ip6tables -F OUTPUT
ip6tables -A OUTPUT -j ACCEPT -m owner --uid-owner debian-tor
ip6tables -A OUTPUT -j ACCEPT -o lo
ip6tables -P OUTPUT DROP

I was preparing my Kali Linux to run a Tor's Middle Relay. I was doing Tor Project's Repository configuration according to this site . I made steps 1 and 2. The 3rd step was to add the gpg key used to sign the packages by running the following command:

sudo wget -qO- https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89.asc  | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg >/dev/null

The problem is I don't understand what this command does and why it fails, even though I execute it with

permissions.

┌──(michal㉿kali)-[/usr/share/keyrings]
└─$ sudo wget -qO- https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89.asc  | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg >/dev/null
[sudo] password for michal: tee: /usr/share/keyrings/tor-archive-keyring.gpg: Permission denied

This part with

, I understand. But I don't know what is happening after the tor repo gets downloaded to my vps.

┌──(michal㉿kali)-[/usr/share/keyrings]
└─$ ls -lah
total 176K
drwxr-xr-x   2 root root 4.0K Jan 28  2022 .
drwxr-xr-x 135 root root 4.0K Jan  3 18:09 ..
-rw-r--r--   1 root root 8.5K Feb 25  2021 debian-archive-bullseye-automatic.gpg
-rw-r--r--   1 root root 8.6K Feb 25  2021 debian-archive-bullseye-security-automatic.gpg
-rw-r--r--   1 root root 2.4K Feb 25  2021 debian-archive-bullseye-stable.gpg
-rw-r--r--   1 root root 8.0K Feb 25  2021 debian-archive-buster-automatic.gpg
-rw-r--r--   1 root root 8.0K Feb 25  2021 debian-archive-buster-security-automatic.gpg
-rw-r--r--   1 root root 2.3K Feb 25  2021 debian-archive-buster-stable.gpg
-rw-r--r--   1 root root  55K Feb 25  2021 debian-archive-keyring.gpg
-rw-r--r--   1 root root  37K Feb 25  2021 debian-archive-removed-keys.gpg
-rw-r--r--   1 root root 7.3K Feb 25  2021 debian-archive-stretch-automatic.gpg
-rw-r--r--   1 root root 7.3K Feb 25  2021 debian-archive-stretch-security-automatic.gpg
-rw-r--r--   1 root root 2.3K Feb 25  2021 debian-archive-stretch-stable.gpg
-rw-r--r--   1 root root 2.3K Jan 25  2022 kali-archive-keyring.gpg

┌──(michal㉿kali)-[/usr/share/keyrings]
└─$ lsb_release -a                                                                                                                                         1 ⨯
No LSB modules are available.
Distributor ID: Kali
Description:    Kali GNU/Linux Rolling
Release:        2022.4
Codename:       kali-rolling

If I run

curl -L -v --socks5-hostname localhost:9050 https://unix.stackexchange.com/ 

I get back the stackexchange webpage. If I use the below URL

curl -L -v --socks5-hostname localhost:9050 https://www.comune.bitonto.ba.it/ 

I get this error

* SOCKS5 connect to www.comune.bitonto.ba.it:443 (remotely resolved)
* Can't complete SOCKS5 connection to www.comune.bitonto.ba.it. (1)
* Closing connection 0
curl: (97) Can't complete SOCKS5 connection to www.comune.bitonto.ba.it. (1)

What could I change to figure out what blocks my command? I'm using curl 7.74.0 (x86_64-pc-linux-gnu) libcurl/7.74.0 OpenSSL/1.1.1n zlib/1.2.11 brotli/1.0.9 libidn2/2.3.0 libpsl/0.21.0 (+libidn2/2.3.0) libssh2/1.9.0 nghttp2/1.43.0 librtmp/2.3