Sorry for the misunderstanding.
> If the error occurs in the context of PAM user activity, one would think that
> there is a message related to the user's activity that would get forwarded to the syslog server,
> or an error message is shown on the user's PAM client session.
In your response, you mentioned that there are cases where the data is sent to the syslog server
and cases where the data is sent to the PAM client session, so how is the distinction made?
Thanks,