Many security approaches are currently used in organisations. In spite of the widespread use of these security techniques, network intrusion remains a problem. This paper discusses some of the fundamental shortcomings present in access control, cryptography, intrusion detection and firewall technologies. It then presents a security verification technique combining intrusion testing with intrusion detection, and includes a detailed case study of this technique in practice. Finally we propose a hybrid firewall/intrusion detection framework aimed at mitigating some of the issues raised as well as describing a system to facilitate automated response.