Index: en/reference/filesystem/functions/move-uploaded-file.xml
===================================================================
RCS file: /repository/phpdoc/en/reference/filesystem/functions/move-uploaded-file.xml,v
retrieving revision 1.7
diff -u -p -r1.7 move-uploaded-file.xml
--- en/reference/filesystem/functions/move-uploaded-file.xml	15 Sep 2007 02:44:00 -0000	1.7
+++ en/reference/filesystem/functions/move-uploaded-file.xml	2 Dec 2007 14:44:33 -0000
@@ -21,10 +21,13 @@
    <parameter>destination</parameter>.
   </para>
   <para>
-   This sort of check is especially important if there is any chance
-   that anything done with uploaded files could reveal their
-   contents to the user, or even to other users on the same
-   system.
+   An important difference between <function>rename</function> and 
+   <function>move_uploaded_file</function> is that the upload directory 
+   doesn't have to be exposed through 
+   <link linkend="ini.open-basedir">open_basedir</link> in order to move an 
+   uploaded file. Hence, a malicious user being able to inject 
+   <parameter>filename</parameter> won't be able to access files uploaded by
+   other requests.
   </para>
  </refsect1>