Blocking browser connections to ocsp urls?
I use Little Snitch to block a bunch of advertising and tracking domains as I surf...for fun more or less. It's like using duckduckgo as my search engine, essentially.
If I am merely using a non financial, non shopping site - like a social media one - while logged into that site, does it matter if I block all access to a given ocsp url, like evintl-ocsp.verisign.com when I'm logged onto this site?
In other words, if I block what I think is a certificate retrieval of some sort here, with only a temporary Little Snitch rule, will my OS go and find some substitute certificate which then could later present a security risk to me at some other, more sensitive site, like a financial or shopping one when a certificate is needed? So will it result in my Mac winding up with bogus certificates in some way?