Security architectures for the home user should be "install and forget". Know that you installed your firewall, and that it will do its best to keep the bad bits and bytes out, and the good bits and bytes in.
What?? First, I believe that AngelicKnight is referring to his businesses firewall. Second, the policy of "install and forget" isn't a good one. Users do this with anti-virus software which is why we see so many users infected with worm/viruses crying "but I have AV software installed". It needs to be checked regularly. That's reality. Even for firewalls. ZoneAlarm, as an example, was found to have some flaws and required updating. If people use a "install and forget" attitude, they will get complacent and will not pay attention to the little details.

Firewalls have been around since the 1980s and anti-virus has been around since the late 80s/early 90s. The usage of 1) both of them on the same machine is relatively new 2) the concept that their computer has something WORTH protecting is new. It is the last point that has made it more critical for users to protect what they've got. In addition, I suspect that companies like Gateway and Dell, who are installing OSes with AV and firewalls, are probably helping. It doesn't solve, however, the on-going issue of users turning this off because it "slows the sytem down/interfers with my Internet access/asks me all these questions".

We should encourage users to install and learn rather than forget, IMHO.