Also, maybe you could allow aras user to execute: sudo /usr/bin/killall -HUP httpd WITHOUT the password. This is for log rotation (/home/aras/etc/logrotate.conf).