diff --git a/chapters/security.xml b/chapters/security.xml
index 3cb687fd18..fa891d5453 100644
--- a/chapters/security.xml
+++ b/chapters/security.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="iso-8859-1"?>
-<!-- $Revision: 1.38 $ -->
+<!-- $Revision: 1.39 $ -->
  <chapter id="security">
   <title>Security</title>
 
@@ -762,6 +762,10 @@ exec ($evil_var);
   
   <sect1 id="security.hiding">
    <title>Hiding PHP</title>
+   <para>
+    In general, security by obscurity is one of the weakest forms of security.
+    But in some cases, every little bit of extra security is desirable.
+   </para>
    <para>
     A few simple techniques can help to hide PHP, possibly slowing
     down an attacker who is attempting to discover weaknesses in your
diff --git a/security/index.xml b/security/index.xml
index 3cb687fd18..fa891d5453 100644
--- a/security/index.xml
+++ b/security/index.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="iso-8859-1"?>
-<!-- $Revision: 1.38 $ -->
+<!-- $Revision: 1.39 $ -->
  <chapter id="security">
   <title>Security</title>
 
@@ -762,6 +762,10 @@ exec ($evil_var);
   
   <sect1 id="security.hiding">
    <title>Hiding PHP</title>
+   <para>
+    In general, security by obscurity is one of the weakest forms of security.
+    But in some cases, every little bit of extra security is desirable.
+   </para>
    <para>
     A few simple techniques can help to hide PHP, possibly slowing
     down an attacker who is attempting to discover weaknesses in your