Gentoo has turned up in lots of interesting places before, but Michael from Misa Digital has put Gentoo to work in something entirely different: a unique instrument he invented, a MIDI guitar that uses a touchpad and digital keys instead of strings!

Behold the Misa Digital Guitar:

The Misa runs Gentoo Linux on an AMD Geode processor, using the Linux kernel version 2.6.31. It sports MIDI and Ethernet ports for connectivity.

I had the chance to ask Michael some questions about the guitar and his preferred choice of operating system:

Why Gentoo?

Since the guitar is an embedded system, I needed a really minimal distribution that would boot fast and had a small footprint. After investigating Linux From Scratch, I realised I did not have the time to invest in building a complete system. I was told that the minimal install of Gentoo is like Linux From Scratch with a package manager. I probably made you cringe with that simplistic analogy but essentially it was right for me. Once I had the install up it took me no time to recompile the kernel and streamline it as much as possible. I'm not a Linux expert though, so I reckon someone else could shrink it even more.

Yes, there are other solutions out there but they are surprisingly inaccessable. And the "live-CD" style distributions do not allow you to change the actual workings of the system. I figured it was best if I just used Gentoo because I have full control.

What were the two biggest challenges in crafting this instrument?

I would say the two biggest challenges are: 1) manufacturing and tooling the actual parts; and 2) sourcing components.

When you are a lone developer with no company, trying to keep the idea "secret", no one wants to cooperate with you. For example if you need a particular electrical like a screen, ordering "one" of something is surprisingly difficult - and you can expect it in 4 to 6 weeks - really slow! And then when you get it, you realise it is not suitable, so you have to repeat the process. The only exception is a website called Digikey, which will have the parts at my doorstep in 1 week guaranteed. But they don't have everything.

Working with Gentoo was a breeze, the Linux community in general is extremely helpful.

What can you tell us about the hardware?

There is no signal processing, it outputs digital signals via a MIDI connection. I had toyed with having an onboard sound generator but ultimately you limit the sound possibilities. By using MIDI, you are guaranteed support with practically every sequencer, synthesizer etc on the market - it is a standard that has been around for over 20 years.

[The touchpad] is a 5 wire resistive touch sensor. These are the most durable screens available on the market. The LCD behind it is OEM and ordered from China.

What changes to Gentoo (as a distribution) would make it easier for you to run it on the guitar?

I thought Gentoo was a breeze to work with. And can I just say, the Gentoo x86 install handbook? BRILLIANT. I used it so much that I think I actually know it off by heart now.

What's in store for the future?

I'd just like to see these instruments hit TV :)

Thanks for your time, Michael, and for crafting such a unique instrument! Be sure to watch a demonstration video of the Misa Guitar in action.

A parting gift for the German Conspiracy,

Gunnar Wrobel recently acquired the rights for his own book about Gentoo, and it has now been published under a free license and is available for download. The latex source for the book is also included. Gunnar's intentions in publishing the latex source was to encourage translations... it would be neat if that really happens. Please take the time to thank Gunnar for all the excellent work he has done for Gentoo.

Stephanie J. Lockwood-Childs contributed to the draft for this announcement.

Ruby: Terminal Control Character Injection
An input sanitation flaw in the WEBrick HTTP server included in Ruby might allow remote attackers to inject arbitrary control characters into terminal sessions.
See GLSA 201001-09 for more information.

SquirrelMail: Multiple vulnerabilities
Multiple vulnerabilities were found in SquirrelMail of which the worst results in remote code execution.
See GLSA 201001-08 for more information.

Blender: Untrusted search path
An untrusted search path vulnerability in Blender might result in the execution of arbitrary code.
See GLSA 201001-07 for more information.

aria2: Multiple vulnerabilities
A buffer overflow and a format string vulnerability in aria2 allow remote attackers to execute arbitrary code.
See GLSA 201001-06 for more information.

net-snmp: Authorization bypass
A remote attacker can bypass the tcp-wrappers client authorization in net-snmp.
See GLSA 201001-05 for more information.

VirtualBox: Multiple vulnerabilities
Multiple vulnerabilities in VirtualBox were found, the worst of which allowing for privilege escalation.
See GLSA 201001-04 for more information.

PHP: Multiple vulnerabilities
Multiple vulnerabilities were found in PHP, the worst of which leading to the remote execution of arbitrary code.
See GLSA 201001-03 for more information.

Adobe Flash Player: Multiple vulnerabilities
Multiple vulnerabilities in Adobe Flash Player might allow remote attackers to execute arbitrary code or cause a Denial of Service.
See GLSA 201001-02 for more information.

NTP: Denial of Service
A Denial of Service condition in ntpd can cause excessive CPU or bandwidth consumption.
See GLSA 201001-01 for more information.

Yes, we will be there! Compiling all the way ... ,

Gentoo will be present at the 26th Chaos Communication Congress (26C3), from December 27th to 30th in Berlin, Germany. The annual conference of the Chaos Computer Club takes place at the Berliner Congress Center (bcc) in Berlin, Germany. Enjoy our ebuild hacking sessions, bug filing workshops, get some merchandise and use our local rsync/http mirror. You will find the Gentoo table on the upper floor.

Hope to see you there!

Robert Buchholz contributed to the draft for this announcement.

The Gentoo Foundation Inc. has been approached by a few large Gentoo users about purchasing advertising on the gentoo.org side bar. They are not in the IT industry so cannot support us in the traditional way, by donating their own product.

The trustees anticipate that more approaches of this nature will be received and view it as a sign of Gentoo maturing. Recognising that this would be a break with tradition, by allowing even major users to contribute to Gentoo in this way the trustees determined to put the question to a vote of Foundation members.

The recording date for the vote will be 29th November. Voting will be from 1 December to 11 December, to enable the result to be available for the next Trustee meeting on 13 December.

Requirements:

Please refer to the Gentoo Foundation Bylaws, in particular 4. Article IV Members

The motion to be voted on will be:

Should major Gentoo users be permitted to purchase ads on the sidebar - Vote yes or No

If you have any questions please contact Trustees or on irc at #gentoo-trustees.

Please turn your KDE radio on, and make sure to increase the volume to its maximum level for this important message.

After multiple setbacks we have finally managed to stabilise KDE4 on both major desktop architectures (amd64 and x86), with other teams to follow.

For this and other reasons as discussed , those of you who still use KDE3 should be seriously considering an upgrade in the near future.

The KDE3 support is being deprecated with immediate effect. This means that ebuilds are dropping KDE3 support where they were broken, or clashing with KDE4.

If you wish to still use KDE3, and you want to help others with having KDE3 around, drop a mail to kde@gentoo.org, where we can give you commit access to the special overlay which will specifically contain only KDE3 packages.
This overlay (named kde-sunset) can be easily used via layman.

Sadly upstream is not supporting KDE3 anymore and we simply lack the manpower to keep support for both (as you might have noticed in the past few months KDE3 has become more and more rusty for which we humbly apologize).

Sorry to bring you the bad news and with hope that KDE4 will suit your needs,

Tomas Chvatal
KDE Teams substituting Lead

KUDOS to Nirbheek Chauhan and David Abbott for helping to put this announcement together and Alec Warner for proofreading it.

Attention Gentoo Community,

After numerous bug fixes and enhancements the Ten Team would like to encourage everyone to try out the 10.1 release.

A FAQ is available to assist you. We have also started a thread in our Forum. Please post any BUGS you encounter.

Please download the latest testing release for your architecture Gentoo Ten Live DVD 10.1 x86 | Gentoo Ten Live DVD 10.1 amd64.

Thanks for your continued support,

The Gentoo-Ten Project

David Abbott contributed to the draft for this announcement.

Woot! Happy Birthday Gentoo. As part of the Birthday party today we announce the winning screenshots.

Thanks to everyone who entered the contest. There were 54 entries using 5 different window managers / desktop environments.

The Winners

1. Quick23t Compiz Fusion
2. ashtophet Fvwm 2.5.27
3. Integer Fluxbox

For all the specifications and cool details please visit the winners page.

discuss this!

Happy Tenth Birthday, Gentoo!

Gentoo Linux is proud to announce the immediate availability of a new, special edition LiveDVD to celebrate this monumental occasion. The LiveDVD features a superb list of packages, some of which are listed below.

• System packages include: Linux Kernel 2.6.30 (with gentoo patches), Accessibility Support with Speakup 3.1.3, BASH 4.0, GLIBC 2.9, GCC 4.3.2. Binutils 2.18, Python 2.6.2, Perl 5.8.8, and more.
• Desktop Environments and window managers include: KDE 4.3.1, GNOME 2.26.3, Xfce 4.6.1, Enlightenment 0.16.8.15, Openbox 3.4.7.2, Fluxbox 1.1.1, TWM 1.0.4, and more.
• Office, graphics, and productivity applications include: OpenOffice 3.1.1, G/Vim 7.2.182, Abiword 2.6.4, GNUCash 2.2.9, Scribus 1.3.3.11, GIMP 2.6.4, Inkscape 0.46, Blender 2.49a, XSane 0.996, and much more.
• Web browsers include: Mozilla Firefox (Minefield) 3.5.3, Arora 0.7.11, Opera 10.0, Epiphany 2.26.3, Galeon 2.0.4, Seamonkey 1.1.17, and other favorites.
• Communication tools include: Pidgin 2.5.9, Quassel 0.5, Mozilla Thunderbird 2.0.23, Claws Mail 3.7.2, Ekiga 2.0.12, Qtwitter 0.7.1, irssi 0.8.13, and many more.
• Multimedia applications include: Amarok 2.1.1, MPlayer 1.0_rc4, DvdAuthor 0.6.14, LAME 3.98.2, FFMPEG 0.5_p19928, GNOME-MPlayer 0.9.7, SMPlayer 0.6.6, and several others.

The Gentoo-Ten LiveDVD is available in two flavors, a hybrid x86/x86_64 version, and an x86_64-only version. The livedvd-x86-amd64-32ul-10.0 will work on x86 or x86_64. If your arch is x86, then boot with the default gentoo kernel. If your arch is amd64 boot with the gentoo64 kernel. This means you can boot a 64bit kernel and install a customized 64bit userland while using the provided 32bit userland. The livedvd-amd64-multilib-10.0 version is for x86_64 only.

Please select your architecture to be redirected to a mirror for download: x86 amd64

A FAQ is available to assist you. We have also started a thread in our Forum. Please post any bugs you encounter.

In addition, we have some exceptional new artwork from Ben Stedman, and Gentoo Developer Alex Legler.

Thank you for your continued support,

Gentoo Linux Developers, The Gentoo Linux Foundation, and The Gentoo-Ten Project

Global Financial Derivatives trading company, OSTC Poland, uses Gentoo Linux in significant sectors of its IT infrastructure. We spoke with long time Gentoo user and head of OSTC Poland's IT department, Patryk Rządziński, to learn more about how and where Gentoo is used. We discovered, as you will read in the full interview, that Gentoo, and more generally open source software, serves well in the commercial world.