<?php
  // isSet -> isset, and & -> &&, quotes around query param names:
  if (isset($_GET["password"]) && isset($_GET["name"])) {
    $pw = $_GET["password"];
    $name = $_GET["name"];

    print("Hi " . $name . "!\n");
    print("Your password is " . $password . "\n");
    if (strlen($pw) < 5) {  // strlen($str) to get the length
      print("Such a tiny password? Well, it's your bank account I guess.");
    } else { // there was a missing { curly brace on this line
      print "Good work having a super-secret ninja password!";
    } // there was a missing { curly brace on this line
  }
?>