XAMPP, WordPress and the login mystery (featuring ZoneAlarm Pro)

I got up early this morning so that I could get a couple of hours of web development in before Jane rose and we had to get involved in Operation Clear Kadesh.

Which was a nice plan … but it has just taken me 90 minutes to work out why I couldn’t login to my new installation of WordPress on my local PC running the XAMPP all-in-one Apache/PHP/MySQL server.

  • XAMPP package 1.5.3a installed beautifully – CHECK
  • XAMPP Control Panel is working – CHECK
  • Apache server is running – CHECK
  • MySQL server is running – CHECK
  • phpMyAdmin is allowing me to access it – CHECK
  • mod_rewrite Apache module is running – CHECK
  • WordPress installed ok – CHECK
  • Can I login to WordPress … NO!

Thinking that it may be a problem with the XAMPP installation I uninstalled version 1.5.3 and upgraded to 1.5.3a. No joy – same problem. After much prodding, tweaking and peering under the bonnet while sucking on my teeth and saying helpful things like “You see … it’s the parts, innit!” I discovered that the problem lay in my over-zealous firewall, ZoneAlarm Pro.

I discovered this by turning off the firewall completely and lo and behold! I could at last connect. I switched the firewall back on and once again the burly, dinner-suited gatekeeper of my PC barred me from logging in to my own local WordPress installation. After more tweaking and systematically turning off the ZoneAlarm settings one by one I finally narrowed the issue down to the “3rd Party Coookies” setting in the Privacy settings (Main tab):

Zonealarm Pro Cookies panel

Switching off “Block 3rd party cookies” and “Remove private header information” immediately did the trick, allowing me to immediately login to my local WordPress installation under the XAMPP Apache server.

I offer this to you in case you’ve encountered the same problem and couldn’t work out what was going on. Switching off the firewall is often one of my first actions when trying to diagnose web-related problems. Often its well-intentioned desire to protect me from all things nasty also prevents me from accessing exactly the thing that I do want to use. I just wish I’d tried it earlier this morning.

Published by

Gareth Saunders

I’m Gareth J M Saunders, 52 years old, 6′ 4″, father of 3 boys (including twins). Enneagram type FOUR and introvert (INFP), I am a non-stipendiary priest in the Scottish Episcopal Church, I sing with the NYCGB alumni choir, play guitar, play mahjong, write, draw and laugh… Former Scrum master at Safeguard Global, Sky and Vision/Cegedim. Former web architect and agile project manager at the University of St Andrews and previously warden at Agnes Blackadder Hall.

4 thoughts on “XAMPP, WordPress and the login mystery (featuring ZoneAlarm Pro)”

  1. Yet again proving why Zonealarm is a complete waste of time. It causes far more problems than it fixes.

    There was a reason to use it pre-SP2, but now Windows has an in-kernel firewall, you are running 2 firewalls, which is completely pointless.

    A firewall should NOT block cookies. That is not its job. The SP2 firewall is more than sufficient for any home user.

  2. Arghhhh… I’ve been having the same problem. I just tried your suggestion and it never worked for me. Even if it did though reducing security settings does not seem like a very satisfactory solution. For the time being for it’s a case of disabling my internet access turning of ZA and only then do I get to mess with my local install of WP.

    Nice looking blog BTW. I like your header.

  3. I realised there’s a need to take another step. That is to refresh your website or even to close the whole web browser and relaunch it again after the above steps.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.