related thread: Proposed procedure for using untrusted USB drives
This thread is related if you decide to buy a seperate USB card: