- About Me
- About TinkerTry
- About TinkerTry Infrastructure - What's TinkerTry.com running on?
I'm Paul Braren, this site's creator, all around tinkerer, and as of October 28 of 2019, proud Dell Technologies employee, after exciting rides at Pivot3, VMware, and 21 years of adventure at IBM. More of my career history below, and on LinkedIn.
As an IT Professional by trade, I’ve enjoyed a life-long passion for technology, both professionally and personally. In other words, getting the most out of technology is not just for my day job, it’s also my hobby. Like many of you, I also spend a lot of evenings and weekends fixing my extended family’s computers, seeking ways to get things done more effectively.
I started posting tips back in 1994, when I started a motherboard-related USENET newsgroup, while doing some visual perception research and later working on Windows NT and OS/2 work at Cornell University. I then moved into consulting and building custom PCs for folks locally in Connecticut. During my years at IBM, I went largely quiet for about 15 years as far as web content, contributing hundreds of tips to my company intranet for my peers. I then traveled to fascinating and not so fascinating customer locations in about 35 of these 50 United States, and got to go to a few other countries too, but given some secret clearance work I was doing, I continued to lay low. That all changed, for the better, read onward...
Cornell University Help Desk
Mar 1993 - Jul 1994 - Worked for free that first week, on the promise of reducing PC (DOS/Windows) help ticket backlog. Did some development as we rapidly got students online in those very early days of explosive internet growth.
Sep 1994 - Oct 1997 - OS/2 Technical Consultant / Trainer
Got myself OS/2 Certified, earning myself a chance to train corporate resellers. I became the technical lead as we grew from 12 to 180 employees in a 6 month span, driving extensively because we couldn't afford to fly. Worked from 1995 to 1997 as a contractor at IBM Waltham Solution Partnership Center which became the IBM Innovation Center, training, and creating a new computing infrastructure and standing up all new datacenter equipment at a lovely customer-facing facility. Curator of the ThinkPad museum in the lobby too!
Oct 1997 - Dec 2016 - World Wide Technical Team Lead of IBM ServerProven Program, helping build then run the customer datacenter. We helped customers speed up their application, and I helped automated the OS deployments for all those labs and classes. I then flew around for 5 years as a Lab Services Technical Consultant and Trainer, doing many rack-and-stacks and VMware JumpStart! deployment/trainings, deployed datacenter hardware and software in 35 of the 50 states in nearly all industry sectors, including Federal. My last 7 years at IBM as a Senior Storage Technical Advisor were focused on IBM XIV and FlashSystem Storage, performing and overseeing hundreds of successful installations of half-million dollar deployments. This role included customer risk-reduction through careful, proactive change management, along with emergency response management. yes, that meant I was on-call duty nearly 24x7, for 7 years!. I also did root-cause analysis after data available events. Gladly, of my dozens of customers, none experienced a data loss event.
I announced the end of my international adventures at IBM in my thank you article titled Thank you IBM, for 21 amazing years!.
Jan 2017 - Jun 2019 - VMware Systems Engineer (vSAN)
While airborne, I proudly announced Today is my first day at VMware!. I went in with my eyes wide open, knowing full well that such a career pivot to a pre-sales role would be rather new to me, as it was not the sort of role I had been in since the early 1990s. My title was Systems Engineer, reporting to incredibly well-liked Peter Keilty. I got to witness the team double in size several times, an awesome rocket-ship ride trajectory was a very good thing for employees. I was one of only 4 hired in the Commercial sector, covering a massive patch, from Michigan to Maine to Virginia!
Aug 2018 - VMware Senior Systems Engineer (vSAN). This was a promotion, and a relief. Perhaps I can do this job after all!
Feb 2018 - VMware Senior Solutions Engineer (HCI)
Promotion! Paried with my Account Executive, we beat all sales objectives and then some, and received team awards. By the end of the year, our territory had shrunk to New England and Metro New York City, which is perfect for where I live in Central Connecticut, right between Boston and New York! Driving now more than flying, but still helping with booth duty at industry events too, which I quite enjoy.
Feb 2019 - Even more hiring, wow! This is sales, where change is to be expected.
Jun 2019 - Advisory Systems Engineer / vArchitect
Details at Just started my next adventure in infrastructure IT at Pivot3 as a Solutions Architect!
Oct 2019 - Advisory vArchitect
Details at Today is my first day at Dell Technologies as an Advisory vArchitect!
This blog, launched June 1st of 2011, is my chance to finally share many of my own tips and ideas publicly. I love creating new things based on a solid, meticulously tested, and fast infrastructure.
This website is entirely my personal project. My employer isn’t in the consumer marketplace, and my articles always divulge any business relationship or loaner equipment agreements I have with any of the tech companies I deal with. These factors may help me be a bit less biased, but that’s just my opinion.
TinkerTry is all about sharing known-good solutions, and not so much about technical support for random & diverse questions. Why? I’ll never be able to keep up with answering questions about hardware I haven’t tested. So I try to focus on what I have experienced, first-hand.
I find that how-to information on the web often covers only a portion of what is really needed to achieve a job well done. Hunting for those last bits of missing information can be aggravating, given you often don’t know how long it’ll take to figure out those missing but crucial steps. This site demonstrates a commitment to thorough information, consisting of known-good solutions. We all have issues that arise when trying to best use technology to enhance our lives.
This site sets out to help empower you with the right information, to get the most out of your technology, without wasting a lot of time starting from scratch. If Google brought you here for something you were looking to do, this site may very well get you to your goal. You’ll find diverse information, including PC configurations, motherboards tips, router configuration, switch brand choices, and ways to reduce electricity usage. This site hopes to help you in your efforts to be the IT hero of your household. You too can conquer the task of making all those bits and bytes get along with one another. TinkerTry is the destination for techies to share their diverse opinions, and facilitate problem solving. Some are common issues that irk many, some are unique challenges that affect only a few, but all are both challenging and fun.
I’m not just a cog in the corporate wheel, I’m also a husband and father. I must balance my day job with my hobbies, in an ongoing battle against time, budget, and family acceptance constraints. So, I’m hoping to continue to periodically post innovative and helpful information, including tips that genuinely helps other IT folks become tech heroes in their own households, while leading a balanced life.
Hopefully you’ll enjoy my postings on this site, where I enthusiastically share the best of what I’ve learned in my many years of travel and tinkering, with a wide variety computers and gadgets.
What's TinkerTry.com running on?
TinkerTry has become a medium size blog, passing 100,000 page views per month in 2014, with continued growth ever since. As any blogger that begins as a hobbyist soon learns, once popularity is achieved, keeping everything running quickly and reliably that takes a bit more than cheap shared web hosting can possibly provide. Below, you'll find a list of the components in the "engine" that's running TinkerTry.com. I think you'll find this list helpful, since I have have experimented with a lot of other web hosts and CDNs since the site was launched way back in June of 2011, learning from many growing pains along the way. While this combination works for TinkerTry, I cannot claim to know whether these service providers are the best your blog, since every site has different bottlenecks and requirements. In other words, your speeds will vary.
If you're interested checking out what this site, or any site, uses "under the hood," simply head on over to builtwith.com/tinkertry.com.
Disclosure: Some of the links below are affiliate links, which means TinkerTry.com, LLC gets a small commission on any new customer sign-ups. This is one small way to show your support for the extensive information TinkerTry has, at no cost to you. There is no secret sauce here behind TinkerTry, with all the ingredients to my recipe available here.
CMS (Content Management System) - Kirby
Click the image at right, watch how fast the page comes up, even on Thinkerbit.com's $5/month shared web hosting. The page load time speaks for itself.
There's also this brief glimpse at my dumping WordPress CMS for Kirby Flat-file CMS, partly to free myself from the monthly cost of keeping WordPress optimized for speed, and mostly to put tiresome add-on troubleshooting and legacy cruft behind me. No database here, just pure speed.
Web Hosting - Cloudways
System status at status.cloudways.com
Hosting of TinkerTry.com was moved to Cloudways managed hosting on March 22, 2015. Cloudways runs Digital Ocean managed servers that run Debian Linux, with an emphasis on combining speed with ease-of-use. Simple to set up, and speed-oriented web hosting features including Nginx with Varnish cache, along with SSD storage, of course.
As of November 2015, only one significant unplanned outage. Happened at the worst time of course, while I was traveling in a rural area with limited mobile data and phone access. Admittedly, there's no phone support service at these low prices, so I moved to a better cell signal spot, then opened a ticket online. Cloudways support responded within 2 minutes that they're working on it, then they fixed the problem between them and the upstream provider (Digital Ocean) within 15 minutes. This turned a bad experience into a good one. You can read the Cloudways SLA here.
On April 07 2018, TinkerTry may have become the first Cloudways-hosted site to have OCSP Stapling implemented, see also the related Service Improvement dialogue with Cloudways here.
Interested in using Cloudways for your blog? Shop here.
Interested in trying out a Droplet at Digital Ocean, one of the hosting companies that Cloudways uses? Shop here.
System status at keycdn.com/status
All media is delivered from local servers across the globe, for faster page load times worldwide.
TinkerTry made the move from AWS CloudFront to KeyCDN on April 11, 2016, partially to see if I could halve monthly CDN bills, and partly because KeyCDN offers the full HTTP/2 support that AWS CloudFront does not, and MaxCDN did not (MaxCDN has since added it).
I watched page load speeds carefully, and AWS may still be the speed champ, but KeyCDN and CDN77 both strike a good balance between price and speed. I'm continuing to test both over the summer of 2016.
Back in April of 2016, using many Pingdom speed tests, for Amsterdam, KeyCDN was the fastest for TinkerTry.com, but for Dallas, New York, and Australia, CDN77 was even faster. These results were quite different when retesting in July of 2016.
You too might be interested in my use of HTTP/2 for both my CDN and the main site, see also:
On April 2018, my certs were expiring, so it was time to give Elliptic Curve Cryptography this time around. After getting a new certificate with guidance from DigiCert, and after reading through KeyCDN's excellent article about Elliptic Curve Cryptography (aka ECC/ECDSA), I took the plunge. Then I hit a snag. It seemed the KeyCDN setup process for custom SSL for ECC certificates wasn't quite ready yet, so notified KeyCDN support, then they quickly got their parser ready. On Apr 9 2018, TinkerTry became the world's very first site to have a custom ECC certificate running on KeyCDN! You can see for yourself on the Qualys SSL Labs for cdn.tinkertry.com, where you'll notice an A+ rating, and where you'll note it says:
Key EC 256 bits
instead of the more common (bloated):
Key RSA 4096 bits
Interested in using KeyCDN for your blog? Shop here.
Extended Validation (EV) Multi-Domain
Wildcard certs sound nice, until you realize you don't get the nice green address bar, see also DigiCert Certificate Comparison. I chose the Extended Validation (EV) Multi-Domain Certificate because I have an LLC, and I only need to cover tinkertry.com, cdn.tinkertry.com, and forum.tinkertry.com for one bundled price. Only later did I realize I also needed www.tinkertry.com to avoid the nasty certificate warning that came up instead of my usual redirect, see also TinkerTry's .htaccess file for no www, no trailing slashes, and all https.
Let's Encrypt is a free alternative that has worked well for millions of sites who don't want or need an EV (green browser bar logo) certificate.
I made the move to DigiCert on April 11, 2016, before my Comodo certificate was set to expire on April 15, 2016. Keeping https on for all TinkerTry content was one more step in the move to HTTP/2 back in June of 2016. Because of in-browser 307 Internal Redirects, once you turn on HSTS, you really wouldn't ever want to turn it back off again anyway.
Yes, EV certs are not cheap. After DigiCert helped me through re-issuing my certs to include the 4th www domain, I was also having some issues with less-than-perfect customer certificate upload instructions at KeyCDN and CDN77. No finger pointing by the DigiCert technician, who instead patiently agreeing to guide me right through it all, including 3rd party CDN configuration, step-by-step. I intentionally chosen their 24x7 live chat instead of their phone support because I personally find having a complete transcript of the conversation very handy. My very knowledgeable service representative even offered to ship me some DigiCert t-shirts for my troubles. Now that's a pleasant way to do business!
On April of 2018, my certs were expiring soon, so I decided to step it up and go with Elliptic Curve Cryptography this time around, DigiCert explains some reasons why:
Because of the smaller key size with an ECC certificate, less data is transmitted from the server to the client during the SSL handshake. ECC certificates also requires less CPU and memory, increasing network performance and making a potentially large difference on high-volume or high-traffic sites.
It all worked out very nice, and TinkerTry is, once again, an A+ on the more-stringent-than-ever Qualys SSL Labs! You can see my DigiCert review on sslshopper.com here.
Interested in using DigiCert for your blog? Shop here.
System status at twitter.com/HoverStatus
I prefer to keep separate DNS / web hosting / domain name services separate, freeing me to easily change any of these services at any time, without worrying about contingencies that might also cause downtime or multi-day waits.
Simple UI, reasonable pricing, no extra charge for WHOIS Privacy.
Interested in Hover for your blog? Sign-up here, or click/tap the logo.
System status at dnsstatus.com
See some of the magic of my DNS in action for yourself, just view the DNS map for the main site, and the DNS map for CDN. I'm using the magic of ANAME records to allow my www-free naked tinkertry.com domain.
I also implemented DNS Made Easy's multi-factor authentication, knowing how important it is to keep these records secure from somebody taking control of my web property.
I want fast DNS lookups for my site visitors, and rapid global DNS change propagation. Here's their tagline:
Engineered to be the fastest, most reliable IP Anycast+ Network.
Interested in DNS Made Easy for your blog? Sign-up here, or click/tap the logo.
System status at status.disqus.com
All comments left below the many articles at TinkerTry are run by this third party commenting engine, which allows for easy third party authentication integration (Google+, Twitter, etc.).
Interested in Disqus for your blog? Sign-up here, or click/tap the logo.